nano-s-plus-guide.com
Login
Independent review. This site is not the official website and is not affiliated with, endorsed by, or operated by the wallet vendor reviewed here. Never enter your seed phrase or private keys on any third-party site.

Passphrase (25th Word) & Hidden Wallets — Risks and Best Practices

Yara Schreiber Yara Schreiber
Try Tangem secure wallet →

Passphrase (25th Word) & Hidden Wallets — Risks and Best Practices

What is the Ledger passphrase (25th word)?

The ledger passphrase (often called the 25th word) is an optional additional secret you can add to a 24-word seed phrase (BIP-39). Think of the 24 words as the master key to a safe deposit box. The 25th word is an extra lock on that box that changes which drawers open. Same seed phrase, different passphrase, different private keys.

What is ledger passphrase in plain language? It's a user-chosen password that modifies how the device derives private keys from your seed phrase. Entering a different passphrase produces a different wallet that is not visible without that exact passphrase. That’s why people call them hidden wallets.

In my experience this is powerful but unforgiving. It offers fine-grained separation of funds, but if you lose the passphrase the associated hidden wallet is effectively lost (no company can recover it for you).

How the 25th word creates hidden wallets

At a high level the device combines your 24-word seed phrase and your passphrase to produce a unique master key. Each unique passphrase yields a distinct set of private keys and addresses. That’s how one physical device can host many wallets without storing separate seed phrases.

Try Tangem secure wallet →

This lets you create one default wallet (no passphrase) plus any number of hidden wallets (each created by entering a different passphrase). Hidden wallets are useful for splitting funds or adding an element of plausible deniability, but they are not a magic bullet.

Passphrase flow diagram (placeholder)

Passphrase vs seed phrase: what's the difference?

  • Seed phrase (recovery phrase): the 24-word master secret that can restore your default wallet and any accounts derived without an added passphrase.
  • Passphrase (25th word): an extra, optional secret that alters derivation to create a separate wallet.

Passphrase vs seed phrase — the seed is primary and must be backed up; the passphrase is an additional lock. If you have the seed phrase but not the passphrase you can still recover the default wallet, but any hidden wallets remain inaccessible.

Passphrase risks (ledger passphrase risks)

Use of a passphrase adds real-world risk. Below are the main points I tell people during testing and workshops.

  • Irrecoverability: Forget the passphrase and funds in that hidden wallet are gone. No company can help. No resets.
  • Exposure risk: Typing or storing the passphrase on an internet-connected device (phone, cloud, screenshot) creates an easy attack vector. And don't store it in a photo backup.
  • False sense of safety: Hidden wallets can provide plausible deniability, but transaction history, timing, or third-party analytics can reveal links between wallets (so deniability is imperfect).
  • Operational complexity: Managing multiple passphrases increases chance of user error. I noticed testers sometimes moved funds into a hidden wallet and later couldn't recall which passphrase they used.
  • Brute-force threat if weak: A short or guessable passphrase can be attacked offline if someone gets your seed; a strong, high-entropy passphrase mitigates this.

But complexity isn't an argument to avoid the feature entirely — it just means you must manage it deliberately.

How to use a passphrase safely — step by step

How to use passphrase safely? Follow a disciplined process.

  1. Decide if you need it. Ask: do I need partitioning, plausible deniability, or extra access controls? If the answer is no, skip the passphrase.

  2. Prefer on-device entry. Where possible, enter the passphrase directly on the hardware wallet (on-device) instead of typing it into a host app or phone. In my experience on-device entry reduces exposure to host-level malware.

  3. Choose a strong, memorable passphrase. Use long, unique phrases (a short sentence or combination of unrelated words + numbers). Avoid obvious personal data. Test mentally: can you recall it under stress?

  4. Back it up separately from the seed phrase. Store the passphrase on a metal backup plate or other durable medium and keep it physically separate from your seed phrase backup. Split copies geographically if appropriate. (See seed backup security and legal backup considerations.)

  5. Test the recovery. Do a full restore to a spare device using your 24-word seed plus the passphrase to confirm the hidden wallet and addresses return. This is non-negotiable.

  6. Consider alternatives for high value. For large holdings, multi-signature setups often provide better survivability and shared-control options. But they are more complex to set up (see multisig setups).

And always document who needs to know what as part of inheritance planning. And test those instructions with a trusted person if you plan legal handover.

Who should use a hidden wallet passphrase — and who should look elsewhere

Who this is best for:

  • Experienced users who understand backup discipline and are comfortable restoring wallets.
  • People needing partitioned funds or an added layer of plausible deniability for targeted threat models.

Who should look elsewhere:

  • Beginners who are still mastering seed phrase backup and PIN management.
  • Anyone who prefers simpler recovery or who cannot reliably back up an extra secret.

I believe multisig or geographically distributed single-sig strategies are often better for institutional holdings and inheritance cases. But personal preferences and threat models vary.

Troubleshooting & ledger passphrase recovery scenarios

What if you forget the passphrase? You cannot ask the company to recover it. Start by checking offline notes, password managers you may have used, and any mnemonic hint you left yourself (I recommend a hint system that does not directly reveal the passphrase). If the passphrase was short and guessable you might attempt a targeted recovery, but that carries risk and is time-consuming.

If the device breaks, restoring the default wallet from the seed phrase to a new device works as normal. Restoring a hidden wallet requires the exact passphrase used originally. See restore & recover wallet for step-by-step recovery procedures.

Firmware updates or device models do not change the cryptographic property: a hidden wallet remains derivable only with the original seed + passphrase. Always verify firmware authenticity before use (firmware updates & bootloader).

Quick comparison: default wallet vs hidden wallet (table)

Feature Default wallet (no passphrase) Hidden wallet (25th word)
Derivation Seed phrase only Seed phrase + passphrase
Recoverable with seed alone? Yes No (passphrase required)
Number of distinct wallets One default Many (one per passphrase)
Risk of accidental loss Lower Higher (more moving parts)
Plausible deniability No Possible (imperfect)
Backup advice Keep seed safe and separate Back up passphrase separately (metal)

FAQ

Q: Can I recover my crypto if the device breaks?
A: Yes for default wallets if you have the 24-word seed phrase. For hidden wallets you need both the seed phrase and the exact passphrase. See device loss recovery.

Q: What happens if the company goes bankrupt?
A: Your keys (seed + passphrase) are yours. The company cannot restore a forgotten passphrase for you. See lost-device & company bankrupt.

Q: Is Bluetooth safe when using a passphrase?
A: Bluetooth adds an extra attack surface. If you must use wireless transport, avoid entering the passphrase on the host — use on-device entry where possible. See USB/OTG/Bluetooth and connectivity security.

Q: Should I use passphrase or multisig?
A: It depends on your threat model. Passphrases provide partitioning and possible deniability. Multisig improves survivability and splits trust. Read multisig setups and cold storage strategies for a fuller comparison.

Conclusion & next steps

A ledger 25th word (hidden wallet passphrase) is a powerful tool when used with discipline. It can offer additional privacy and compartmentalization, but it also raises the bar for backup and recovery. Test restorations, back up the passphrase separately (metal if possible), and consider multisig for very large sums.

Want a step-by-step setup and restore walkthrough? See the seed phrase management, how to restore a wallet, and our passphrase management pages for detailed guides and troubleshooting.

If you have a specific recovery scenario, check the troubleshooting flowchart or the error codes index to find next steps quickly.

But remember: your security model depends on how well you manage the two secrets (seed phrase and passphrase). What I've found is simple discipline often prevents the most common mistakes.

Try Tangem secure wallet →