A new attack mechanism called 'Dark Skippy' has been discovered according to the latest research report. This mechanism enables hackers to extract private keys from Bitcoin hardware wallets that hold only two signature transactions. The vulnerability may apply to all models of hardware wallets but can only be activated when victims are induced to download malicious firmware. Compared to previous versions of 'Dark Skippy', the new version requires only a few transactions to carry out the attack, rather than the dozens of transactions previously needed. It is noteworthy that this attack remains effective even if users generate their mnemonic phrases on an isolated device. This disclosure report was published by Lloyd Fournier, Nick Farrow, and Robin Linus, where Fournier and Farrow are co-founders of hardware wallet manufacturer Frostsnap, and Linus is a joint developer of the Bitcoin protocol ZeroSync and BitVM.