[Nursie]

>> The benefit of our device over traditional web wallets is security. Our devices are embedded. Everything that we wrote lives on the firmware. You don’t have to trust any app.

Errrr.... 'embedded' does not mean secure. While you may not have the full software stack of, say, Android or iOS, that doesn't make it secure by default. There's a network interface, some sort of processor, a variety of input devices etc.

I would hope that before making claims like "malware/virus proof" they would get both the hardware and software audited, as credit-card terminals generally have to be.