Skip to content
 
If you can read this, either the style sheet didn't load or you have an older browser that doesn't support style sheets. Try clearing your browser cache and refreshing the page.

(The New York Times)   Those encrypted messaging apps aren't the protection you seek. Iranian hackers infiltrated both Telegram and WhatsApp and exfiltrated unencrypted data from users   (nytimes.com) divider line
    More: News, Attack, Minority group, Attack!, Human rights, Iranian hackers, Miaan Group, capability Iran, digital security reports  
•       •       •

325 clicks; posted to Fandom » on 18 Sep 2020 at 11:44 AM (5 weeks ago)   |   Favorite    |   share:  Share on Twitter share via Email Share on Facebook



19 Comments     (+0 »)
 
View Voting Results: Smartest and Funniest
 
2020-09-18 11:20:08 AM  
Whoops, my bad. Telegram, not Signal
 
2020-09-18 11:20:49 AM  
Here are the relevant passages from the two reports. Again, note that this is all happening on the phone/computer, where the data is unencrypted.

https://t.co/xOltCUqstX

https://t.co/TVRnr8LJ49 https://t.co/Pp89vDHrgL

Link
 
2020-09-18 11:23:10 AM  
The best way of communicating whilst surfing the web is to always assume someone is snooping on whatever it is you're doing. Because, well, thats exactly whats happening.
 
2020-09-18 11:35:11 AM  
Any way we can get the messages from the devices used by the Trump Campaign?
 
2020-09-18 11:37:08 AM  
Apparently the NYT buried the lede in that the "bypassing of encryption" happened from Iran infecting the unencrypted devices with malware.
 
2020-09-18 11:44:10 AM  
Better ban tiktok
 
2020-09-18 11:56:21 AM  
End-point security vulnerabilities have always existed for these apps. That's like saying that my high level encrypted data transfer has been broken because there's a keylogger on my computer. It's not really accurate to say the encryption was broken, just circumvented.
 
2020-09-18 12:11:39 PM  
Not quite sure why Telegram is blamed for breakages into "phones" and "computers". Is it next on the US "ban competition" list or what?
 
2020-09-18 12:13:38 PM  
Encrypted communications are only as secure as the device you use? Who could have predicted this?
 
2020-09-18 12:19:31 PM  
Isn't Baron von Trump in charge of The Cyber?
 
2020-09-18 12:19:51 PM  
Don't hack the app, hack the device it runs on.
 
2020-09-18 12:23:14 PM  

Bootleg: Any way we can get the messages from the devices used by the Trump Campaign?


Sure, just log into twitter.

/I highly doubt they're sophisticated enough to be on signal.
 
2020-09-18 12:36:10 PM  
imgs.xkcd.comView Full Size
 
2020-09-18 12:51:26 PM  

Barfmaker: [imgs.xkcd.com image 448x274]


The budgets of NSA have long proven this piece of xkcd "wisdom" wrong.
 
2020-09-18 1:45:09 PM  
"The hackers also have created malware disguised as Android applications, the reports said.
A spokesman for Telegram said that the company was unaware of the Iranian hacker operation, but that "no service can prevent being imitated in 'phishing' attacks when someone convinces users to enter their credentials on a malicious website."

Yep.
 
db2
2020-09-18 2:04:08 PM  

somedude210: Here are the relevant passages from the two reports. Again, note that this is all happening on the phone/computer, where the data is unencrypted.

https://t.co/xOltCUqstX

https://t.co/TVRnr8LJ49 https://t.co/Pp89vDHrgL

Link


That was my immediate question. Is this an endpoint attack, or a central infrastructure attack? I guess that answers it.
 
2020-09-18 6:32:45 PM  

pup.socket: Barfmaker: [imgs.xkcd.com image 448x274]

The budgets of NSA have long proven this piece of xkcd "wisdom" wrong.


4096 is still in the past quantum realm. Nose is recommending 3072 for storage up to the year 2030 and more for after that. An educated guess on how long it would take to crack, on average, a 4096 key is some many trillions years in compute time.
 
2020-09-18 6:33:05 PM  
*NIST is recommending
 
2020-09-18 10:26:42 PM  

soopey: pup.socket: Barfmaker: [imgs.xkcd.com image 448x274]

The budgets of NSA have long proven this piece of xkcd "wisdom" wrong.

4096 is still in the past quantum realm. Nose is recommending 3072 for storage up to the year 2030 and more for after that. An educated guess on how long it would take to crack, on average, a 4096 key is some many trillions years in compute time.


Assuming brute force, you forgot to add.
 
Displayed 19 of 19 comments

View Voting Results: Smartest and Funniest

This thread is closed to new comments.

Continue Farking





On Twitter



  1. Links are submitted by members of the Fark community.

  2. When community members submit a link, they also write a custom headline for the story.

  3. Other Farkers comment on the links. This is the number of comments. Click here to read them.

  4. Click here to submit a link.