BitBox02 Review 2026: The Swiss Bitcoin Vault That Keeps It Simple
BitBox02 Review 2026: The Swiss Bitcoin Vault That Keeps It Simple
Last reviewed: March 2026
The BitBox02 Bitcoin-only edition is one of the most focused hardware wallets you can buy. No altcoin bloat. No flashy touchscreen. Just a compact USB-C device with open-source firmware, a dual-chip security architecture, and a backup method that skips the nerve-wracking pen-and-paper ritual.
Built by Shift Crypto (now branding as BitBox) in Zurich, Switzerland, the BitBox02 has earned a loyal following among Bitcoiners who want their security tools to be auditable, minimal, and Swiss-engineered. But it also has real limitations you should know about before buying.
This review covers the Bitcoin-only edition specifically. If you hold altcoins, Shift Crypto sells a multi-edition, but that is outside our scope at Bitcoin.diy.
Quick Specs
| Feature | Detail |
|---|---|
| **Price** | $119 to $149 / €119 to €149 (verified March 2026) |
| **Supported coins** | Bitcoin only (separate multi-edition available) |
| **Security model** | Dual-chip: ATECC608B secure element + STM32 microcontroller |
| **Open source** | Yes, fully (firmware + hardware schematics on GitHub) |
| **Company / HQ** | Shift Crypto AG, Zurich, Switzerland |
| **Founded** | 2015 (ETH Zurich spin-off) |
| **Display** | 128 x 64 px white OLED |
| **Input** | Capacitive touch sliders (tap, slide, hold) |
| **Connectivity** | USB-C (no Bluetooth, no battery) |
| **Backup** | MicroSD card (included) + optional 24-word seed phrase |
| **Companion app** | BitBoxApp (Windows, macOS, Linux, Android, iOS via Nova only) |
| **Weight** | ~12g |
| **Dimensions** | 54.5 x 25.4 x 9.6 mm |
| **Buy it** | [BitBox02 Bitcoin-only at bitbox.swiss](/go/bitbox) |
Key Takeaways
- Fully open-source firmware and hardware, independently audited, with no known exploits on the original BitBox02 model
- MicroSD card backup saves your wallet in seconds, no handwriting 24 words under pressure
- Bitcoin-only firmware is a separate build with a smaller codebase and reduced attack surface
- Touch slider navigation works but takes a few minutes to learn
- No iOS support on this model (requires the newer BitBox02 Nova for iPhone/iPad)
- The companion BitBoxApp is clean, supports coin control, and can connect to your own Bitcoin node
- Shift Crypto experienced a data breach in July 2025, an important factor for privacy-conscious buyers
What Is the BitBox02?
The BitBox02 is a hardware wallet, a small physical device that stores your Bitcoin private keys (the secret codes that control your bitcoin) completely offline. Even if your computer is compromised with malware, the keys never leave the device.
Shift Crypto released the original BitBox (the BitBox01) in 2015 as one of the earliest hardware wallets on the market. The BitBox02 launched in 2019 as a complete redesign. The company was founded by Douglas Bakkum and Jonas Schnelli as a spin-off from the Bio Engineering Laboratory at ETH Zurich, one of Europe's top research universities.
There are two versions of the BitBox02: a multi-edition that supports Ethereum, Litecoin, Cardano, and ERC-20 tokens alongside Bitcoin, and a Bitcoin-only edition that runs stripped-down firmware. The Bitcoin-only version literally cannot process any other cryptocurrency. The firmware is locked at the factory, so you cannot switch between editions after purchase.
We recommend the Bitcoin-only edition. Less code means fewer potential bugs and a smaller surface for attackers to target. If you are here on Bitcoin.diy, that's probably what you want.
Update (June 2025): Shift Crypto released the BitBox02 Nova, a next-generation model with Bluetooth, iOS support, an upgraded EAL6+ secure chip, and a glass OLED display. It is priced at around €189. This review focuses on the original BitBox02, which remains on sale at a lower price and is still a strong choice for USB-connected use. We will publish a separate Nova review soon.
Unboxing and Setup
The BitBox02 arrives in a vacuum-sealed bag with a tamper-evident seal. If the seal is broken, do not use the device. Contact Shift Crypto for a replacement.
Inside: the BitBox02, a USB-C cable (plus USB-A adapter), an 8GB microSD card for backup, a quick start guide, and stickers. The device looks like a slightly oversized USB stick with a matte black polycarbonate finish. It is lightweight and discreet. One design note: the USB-C plug is built directly into the body, which can block adjacent ports on laptops. The included extension cable solves this.
Setup takes about 10 minutes:
- Download the BitBoxApp from bitbox.swiss (Windows, macOS, Linux, Android)
- Plug in the device via USB-C
- The app checks for firmware updates. Install them before proceeding.
- Set a device password using the touch sliders on the device itself
- The device generates your seed phrase (24 words) and saves an encrypted backup to the microSD card
- Optionally write down the 24 words on paper or metal as a secondary backup
The touch slider interface trips up most new users at first. You slide along the device edges to select characters, tap the top to confirm, tap the bottom to cancel. Reddit users consistently say "unintuitive at first, fine after five minutes."
MicroSD Card Backup: The Standout Feature
Most hardware wallets force you to write down 12 or 24 words on paper during setup. Mess up a single letter and your backup might be useless. The BitBox02 takes a different approach: it saves an encrypted backup directly to a microSD card.
How it works:
- During setup, the device writes your wallet backup to the included microSD card
- The backup is encrypted with your device password
- You can create multiple backups on separate microSD cards through the BitBoxApp
- To restore, insert the microSD card into a new BitBox02 and enter your password
- The January 2026 firmware update now sorts your backups from newest to oldest for easier management
Why users love this:
- Zero risk of writing down a word incorrectly
- Setup is faster (seconds instead of minutes)
- Easy to create redundant copies
- A thief who finds the microSD card cannot access it without your device password
The real risks to consider:
- MicroSD cards are physical storage. They can fail, corrupt, or get damaged over time.
- You must remember your device password. No password, no recovery.
- If all your microSD cards fail and you did not write down your seed phrase, your bitcoin is permanently lost.
Our recommendation: Use the microSD backup as your primary method, but also write down your 24-word seed phrase on paper or stamp it into metal as a secondary backup. The BitBoxApp lets you display the seed words on screen for manual recording at any time. Belt and suspenders. For more on backup strategies, read our guide on seed phrases explained.
The BitBoxApp
The companion app is one of the best in the hardware wallet space. Multiple Reddit users specifically call it a highlight.
Key features: Send/receive with on-device address verification, full transaction history, coin control (choose which UTXOs to spend), own-node connectivity (Umbrel, myNode, RaspiBlitz, or any Electrum server), firmware updates, backup management, and integrated bitcoin purchasing.
By default the app connects to Shift Crypto's servers for blockchain data. For maximum privacy, connect to your own Bitcoin full node so Shift Crypto never learns which addresses are yours.
Platform support: Windows, macOS, Linux, and Android (via USB-C or USB OTG). iOS is not supported on the standard BitBox02. You need the BitBox02 Nova for iPhone/iPad. Some users note the app looks slightly dated visually, but it is clean and functional.
Bitcoin-Only Firmware: Why It Matters
The Bitcoin-only edition runs a completely separate firmware build with a smaller codebase, locked at the factory by a secure bootloader (a security layer that prevents firmware tampering). This is not a settings toggle.
Fewer lines of code mean fewer potential bugs. No altcoin transaction paths can be manipulated. Firmware updates are simpler and easier for researchers to audit. The device physically cannot sign transactions for other blockchains. If you only hold bitcoin, there is no reason to carry altcoin firmware. Think of it like a safe with one lock instead of five.
Security Architecture
The BitBox02's security goes beyond just being open-source. Here is what is actually inside:
Dual-Chip Design
The device pairs two chips: an ATECC608B secure element (handles cryptography and protects against physical key extraction) and an STM32 microcontroller (runs the open-source firmware that anyone can audit). You get the physical protection of a dedicated security chip and the transparency of verifiable code. The Trezor Safe 5 added a secure element in 2024, but the BitBox02 has had this architecture since 2019.
Anti-Klepto Protocol
A compromised hardware wallet could theoretically leak your private key through the random data in transaction signatures. You would never notice. The BitBox02's anti-klepto protocol prevents this: the BitBoxApp contributes its own randomness to each signature, and the device proves it used the combined randomness correctly. Even compromised firmware could not exfiltrate your keys this way.
Additional Security Features
- Multisig support: Use the BitBox02 as one key in a multi-signature setup (a setup that requires multiple devices to approve a transaction) for higher-value storage
- Passphrase support: Add an optional extra word to your seed phrase for an additional layer of security
- Miniscript and MiniTapscript: Advanced Bitcoin scripting support (added October 2024), enabling time-locked backups and complex spending conditions through compatible wallets like Liana
- Silent Payments support: Send bitcoin to reusable addresses while maintaining privacy (first hardware wallet to support this, added October 2024)
- Tamper-evident packaging: Vacuum-sealed bag detects supply chain tampering before you even open the box
- Secure bootloader: Prevents firmware downgrade attacks and locks the Bitcoin-only/multi-edition choice permanently
Independent Audits
Shift Crypto's firmware has been audited by Consulintel and Census Labs, with reports publicly available. The firmware supports deterministic builds, so you can compile the code yourself and verify it matches what runs on your device. Few hardware wallets offer this level of verifiability.
Safety and Trust: The Full Picture
Shift Crypto has a strong security track record on the device side, but you should know about the company-level incident.
The July 2025 Data Breach
In late July 2025, the Everest ransomware group targeted Shift Crypto and claimed to have stolen internal documents and customer order information. Your bitcoin is not at risk from this breach, as private keys never touch Shift Crypto's servers. But if you ordered before August 2025, your name and shipping address may have been exposed. For a privacy-focused company, this was a significant incident.
Device Security Track Record
No successful remote exploits have been reported against the BitBox02. Vulnerabilities disclosed in January 2026 affected only the BitBox02 Nova's secure chip, required physical device access, and were patched before public disclosure. The original BitBox02 was not affected.
Company Background
- Legal entity: Shift Crypto AG, Zurich, Switzerland
- Founded: 2015 by Douglas Bakkum and Jonas Schnelli (ETH Zurich spin-off)
- Funding: Backed by SIX Fintech Ventures (Swiss stock exchange venture arm)
- Open source: Firmware, hardware schematics, and companion app all public on GitHub
Day-to-Day Usage
Receiving: Open the BitBoxApp, select "Receive," and verify the address on both the app and the device screen. Always check they match before sharing. This protects against clipboard-hijacking malware.
Sending: Enter the recipient address and amount in the app. The BitBox02 displays the details on its OLED screen for verification. Confirm with a tap.
Password entry is where the touch sliders show their weakness. Selecting characters one at a time is slower than the Coldcard's keypad or the Trezor Safe 5's touchscreen. The January 2026 update added a helpful detail: the device now shows remaining unlock attempts when fewer than 10 are left.
Firmware updates are handled through the BitBoxApp. Recent major updates include the October 2024 "Lugano" update (Silent Payments, MiniTapscript) and the January 2026 "Marmorera" update (sorted backups, password change, security patches).
Pros: What We Like
1. Genuinely Open Source
Not "open source except for the secure element" or "open source but you cannot verify the builds." The BitBox02's firmware, hardware schematics, and companion app are all on GitHub. Deterministic builds let you verify the firmware yourself. This is the gold standard for hardware wallet transparency.
2. MicroSD Backup Is Brilliant
The microSD backup removes the most stressful part of hardware wallet setup. No writing 24 words by hand, no worrying about typos. It is fast, reliable, and easy to create redundant copies. The fact that it is encrypted with your device password adds a layer of protection that plain paper backups lack.
3. Bitcoin-Only Firmware Done Right
The Bitcoin-only firmware is not just a marketing label. It is a separate, smaller codebase locked at the factory level. Less code means fewer attack vectors. The secure bootloader makes it impossible to flash multi-coin firmware onto a Bitcoin-only device.
4. Best-in-Class Companion App
The BitBoxApp is clean, functional, and includes features that many competitors charge extra for or skip entirely: coin control, own-node connectivity, integrated exchange, and clear transaction history. Multiple independent reviewers and Reddit users cite it as one of the best wallet apps available.
5. Anti-Klepto Protocol
A genuine security innovation, not marketing fluff. This mathematically prevents the device from leaking key material through transaction signatures. Most hardware wallets do not have this.
6. Cutting-Edge Bitcoin Feature Support
The BitBox02 was the first hardware wallet to support Silent Payments and added MiniTapscript in October 2024. Shift Crypto consistently implements new Bitcoin protocol features faster than competitors.
7. Excellent Customer Support
Reddit users frequently praise Shift Crypto's support team. Multiple reports describe free replacements for defective devices, even outside warranty periods. For a hardware wallet company, responsive support matters.
Cons: What Could Be Better
1. Touch Sliders Are Polarizing
The capacitive touch interface is the most common complaint in user reviews. Sliding along the device edges to enter passwords and navigate menus feels unintuitive for the first few uses. It is noticeably slower than the Coldcard's physical keypad or the Trezor Safe 5's color touchscreen. Some users never fully warm up to it.
2. No iOS Support (Standard Model)
The original BitBox02 does not work with iPhones or iPads at all. If you use Apple devices, you need the BitBox02 Nova (€189) or a different wallet entirely. This has been the most requested feature in the BitBox community for years.
3. Small, Low-Resolution Screen
The 128 x 64 pixel OLED display works for basic address verification, but it is cramped compared to the Trezor Safe 5's color touchscreen or the Jade Plus's larger display. Verifying a full Bitcoin address on this screen requires careful scrolling. It gets the job done, but it is not comfortable.
4. USB Only, No Air-Gap Option
The BitBox02 must be physically plugged into a computer or phone via USB-C. There is no camera for QR code signing (like the Jade Plus offers) and no NFC (like the Coldcard Mk4). For users who want a fully air-gapped workflow (signing transactions on a device that never connects to another device), the BitBox02 is not the right choice.
5. The July 2025 Data Breach
While the breach did not affect device security, having customer order data potentially exposed is a real negative for a company that markets itself on Swiss privacy values. If you ordered before August 2025, your purchase may be linkable to your identity.
6. Lightweight Plastic Build
The polycarbonate body feels less substantial than the metal cases on the Foundation Passport or Coldcard Mk4. It is durable and functional, but side-by-side with a $249 Passport, the BitBox02 feels like the budget option (even though it is not cheap).
7. Edition Lock Is Permanent
Once you buy the Bitcoin-only edition, you cannot switch to multi-coin firmware or vice versa. The secure bootloader enforces this permanently. If your needs change, you need a new device. This is a security feature, but it also means you need to choose carefully.
8. Smaller Ecosystem
Compared to Trezor or Ledger, the BitBox02 has a smaller user community, fewer third-party integrations, and less tutorial content online. You can use it with Sparrow, Electrum, and Specter for multisig, but the ecosystem is more limited than what Trezor and Ledger offer.
Real User Feedback
Here is what actual BitBox02 users say across Reddit and review platforms:
What users love most:
- "BitBox wallet is by far the best" (r/Bitcoin, 2025, highly upvoted post praising the overall experience)
- The BitBoxApp is consistently called out as the best companion app in the hardware wallet space
- Customer support receives frequent praise, including reports of free warranty replacements
- The microSD backup gets positive mentions as a stress-free alternative to paper backups
- Multiple users describe the Bitcoin-only firmware as the reason they chose BitBox over competitors
What users complain about most:
- Touch slider interface is the single most common complaint. "Takes getting used to" appears in nearly every review.
- No iOS support frustrated many users, especially before the Nova was announced in June 2025
- Some users in May 2024 reported receiving devices with cosmetic defects (scratches/cracks), though Shift Crypto eventually resolved these cases
- The USB-C plug blocking adjacent ports is mentioned in several reviews
- A few users find the small OLED screen difficult for address verification
Overall sentiment: Strongly positive. The BitBox02 has a small but loyal community. Users who choose it tend to be deliberate about their decision and satisfied with the trade-offs. The most common recommendation pattern on Reddit is: "If you want simplicity and open source, get the BitBox02. If you want maximum security and do not mind complexity, get the Coldcard."
BitBox02 vs. the Competition
Here is how the BitBox02 Bitcoin-only stacks up against the other leading Bitcoin hardware wallets in 2026:
| Feature | [BitBox02 Bitcoin-only](/go/bitbox) | [Coldcard Mk4](/go/coldcard) | [Trezor Safe 5](/go/trezor) | [Jade Plus](/wallets/blockstream-jade-review/) |
|---|---|---|---|---|
| **Price** | $119 to $149 | $130 to $178 | ~$169 | ~$149 |
| **Bitcoin-only firmware** | Yes (factory locked) | Yes (always) | Yes (optional) | Yes (always) |
| **Open source** | Full (firmware + hardware) | Full (firmware) | Full (firmware) | Full (firmware + hardware) |
| **Secure element** | ATECC608B | Dual (ATECC608 + DS28C36B) | EAL 6+ | Virtual (Blind Oracle) |
| **Air-gapped signing** | No | Yes (microSD PSBTs) | No | Yes (QR camera) |
| **Display** | Small OLED, 128x64 | Small OLED + keypad | 1.54" color touch, Gorilla Glass | Large color screen |
| **Bluetooth** | No | No | No | Yes |
| **iOS support** | No (Nova only) | No | No | Yes (via Bluetooth) |
| **Backup method** | MicroSD + seed phrase | MicroSD + seed phrase + dice rolls | Seed phrase + Shamir Backup | SeedQR + seed phrase + dice rolls |
| **Anti-klepto** | Yes | No | No | No |
| **Own node support** | Yes (Electrum, Umbrel, etc.) | Yes (via PSBT workflow) | Yes (via Electrum) | Yes (Blockstream Green, Electrum) |
| **Best for** | Open-source simplicity | Maximum security, advanced users | Beginners who want a big screen | Budget air-gapped, mobile users |
Quick comparison notes:
- vs. [Coldcard Mk4](/wallets/coldcard-mk4-review/): Coldcard wins on air-gapped operation, dual secure elements, and physical security. BitBox02 wins on ease of use, companion app quality, and anti-klepto signing. Want maximum security with a steeper learning curve? Coldcard. Want simplicity? BitBox02.
- vs. [Trezor Safe 5](/wallets/trezor-safe-5-review/): Trezor has a better screen and supports Shamir Backup (splitting your recovery phrase into multiple shares). BitBox02 has anti-klepto, microSD backup, and more straightforward own-node support. Trezor is better for beginners; BitBox02 is better for privacy-focused users.
- vs. [Jade Plus](/wallets/blockstream-jade-review/): Jade offers air-gapped QR signing, Bluetooth, and a larger screen at a similar price. But it uses a "virtual secure element" instead of a dedicated hardware chip, a fundamentally different (and debated) security approach. Jade is better for mobile users; BitBox02 has more proven physical security.
- vs. [Foundation Passport](/wallets/foundation-passport-review/): The Passport (~$249) has a larger screen, air-gapped QR signing, and premium metal build. Better device physically, but nearly twice the price. BitBox02 wins on price and companion app.
Who Should Buy the BitBox02?
Great for:
- Bitcoin-only holders who want a dedicated, auditable device
- Users who prioritize open-source transparency and want to verify their own firmware
- People who find seed phrase backup stressful and prefer the microSD approach
- Desktop and Android users who want a clean companion app with coin control and own-node support
- Anyone who values Swiss engineering and a company with a long track record in Bitcoin security
Skip it if:
- You need iOS support (get the BitBox02 Nova or a Jade Plus)
- You want air-gapped transaction signing (get a Coldcard Mk4 or Jade Plus)
- You want a large, color touchscreen (get a Trezor Safe 5 or Foundation Passport)
- You need Bluetooth connectivity (get a Jade Plus or BitBox02 Nova)
- You are privacy-sensitive about purchase data and are concerned about the July 2025 breach
Our Rating: 8.0/10
The BitBox02 Bitcoin-only edition does the fundamentals exceptionally well. Open-source firmware you can actually verify. A dual-chip security architecture with anti-klepto signing. A backup system that removes the most error-prone step of hardware wallet setup. A companion app that genuinely respects your privacy by letting you connect to your own node.
Where it falls short: the touch slider interface is not as intuitive as buttons or a touchscreen. The screen is small by 2026 standards. No iOS support on this model. No air-gap option. And the July 2025 data breach, while it did not compromise device security, dented the company's privacy reputation.
For a Bitcoin-only user who primarily uses a desktop or Android phone and values open-source verifiability above flashy features, the BitBox02 remains one of the strongest options in its price range. It is not the most advanced hardware wallet on the market, but it might be the most honest one.
Check the current price at bitbox.swiss
Frequently Asked Questions
Is the BitBox02 safe?
Yes. No known successful remote exploits. Dual-chip architecture with fully open-source, independently audited firmware. The anti-klepto protocol mathematically prevents key leakage through transaction signatures. The July 2025 data breach affected company servers, not device security.
What is the difference between the Bitcoin-only and multi-edition?
The Bitcoin-only edition runs a separate, smaller firmware build with no altcoin code. Locked at the factory by a secure bootloader, so you cannot switch editions. If you only hold bitcoin, the Bitcoin-only edition is the stronger security choice.
How does the microSD backup work?
During setup, the device writes an encrypted backup to the included microSD card, protected by your device password. To restore, insert the card into a new BitBox02 and enter the password. You can create multiple copies on separate cards. We recommend also writing down your 24-word seed phrase as a secondary backup.
Can I use the BitBox02 with my iPhone?
No. The standard BitBox02 requires USB-C. For iPhone or iPad, you need the BitBox02 Nova (€189, released June 2025), which adds Bluetooth and native iOS support.
What happens if my BitBox02 breaks or gets lost?
Your bitcoin is not stored on the device. Restore your wallet from the microSD backup or 24-word seed phrase onto a new BitBox02 or any BIP-39 compatible wallet. Proper backup is critical. Read our self-custody guide.
Does the BitBox02 support multisig?
Yes. Use it as one key in a multi-signature setup with Sparrow, Electrum, or Specter Desktop. Multisig requires multiple devices to approve transactions, adding security for larger holdings.
How does it compare to the BitBox02 Nova?
The Nova adds Bluetooth, iOS support, a glass OLED display, an EAL6+ secure chip, and new colors for about €189. If you use Apple devices, the Nova is worth it. If USB-C on desktop or Android works for you, the original BitBox02 does everything you need at a lower price.
Is the BitBox02 open source?
Fully. Firmware, hardware schematics, and BitBoxApp are all on GitHub. Deterministic builds let you compile and verify the code yourself. Independent audits are publicly available. This is a meaningful differentiator compared to wallets with closed-source components.
Should I worry about the July 2025 data breach?
Your private keys were never at risk. The concern is privacy: if you purchased before August 2025, your shipping details may have been exposed, making you a potential target for phishing. Be cautious about unsolicited messages claiming to be from Shift Crypto.
Can I connect to my own Bitcoin node?
Yes. The BitBoxApp supports Electrum servers and full nodes (Umbrel, myNode, RaspiBlitz, Nodl). This prevents Shift Crypto from learning which addresses are yours.
What's Next?
- Compare all the top Bitcoin hardware wallets in our wallet comparison tool
- Browse all hardware wallet reviews to find the right fit
- New to self-custody? Start with our self-custody guide
- Already own a BitBox02? Test your recovery process with the microSD backup before you need it
- Understand the basics of seed phrases before setting up any hardware wallet