ꕤ
Article
SOURCE
(via VK)
https://xakep.ru/2016/01/12/cops-hjacked-pgp-blackberry/
SURVEILLANCE - Blackberry 9720 - Messages Decrypted by Netherlands Criminologists - Netherlands Forensic Institute (NFI) Technique (works on Smartphones & some PGP)
Google Translation
Russian to English
Dutch police said that cracked the encryption Blackberry
Maria Nefedova
https://xakep.ru/2016/01/12/cops-hjacked-pgp-blackberry/
In December 2015 the Dutch blog misdaadnieuws.com (Crime News) published in its pages the document, according to which law enforcement authorities of the Netherlands have found a way to recover deleted messages and read emails and encryption on devices BlackBerry.
Historically, the company BlackBerry stake on the security of their devices. Smartphones companies have traditionally come with a built-PGP-encrypted, which, in particular, used for e-mail client. Protecting BlackBerry devices considered to be very reliable, so misdaadnieuws.com published in the pages of the report of the Dutch Institute of Criminology (Netherlands Forensic Institute, NFI) has caused considerable surprise among experts and journalists.
Publication Vice Motherboard contacted representatives of NFI, to confirm or refute the information published in the blog. January 11, 2016 criminologists finally answered and said that they do often have to assist the police in the investigation of criminal offenses, but it needs to recover and extract data from a variety of devices. NFI staff confirmed that a private company using the software Cellebrite, they have found a way to recover deleted messages and read emails on smartphones BlackBerry, PGP-protected encryption.
According to a report published misdaadnieuws.com, when working with the BlackBerry 9720 criminologists were able to recover 325 encrypted messages, but were able to decipher only 279 of them.
Which techniques are used to circumvent the encryption criminologists tell refused. Probably, they were able to guess the password, based on memory dump, but for the application of this technique usually requires removal of the chip from the motherboard, which is unacceptable when dealing with evidence.
However, it is reported that the Dutch forensic technique it requires physical access to a device that can serve as some consolation for the owners of protected devices. In addition, NFI imperfect technique: it works not with all models of smartphones and implementations of PGP, for example, has no effect on GhostPGP.
Source | English Translation
|
---------------------- ꕤ ----------------------
COMMENT
Encryption sounds crap if it can readily be decrypted.
The 297 out of 325 encrypted messages broken success rate is massive.
Blackberry might need to work on their security?
It sounds like GhostPGP is the only way to go ... unless it's a double-cross. lol
I don't have to worry about any of it, because I have no fancy devices.
The most excitement I get is the text reminder to recharge the old fashioned prepaid mobile.
ꕤ
|