The Israeli company Cellebrite is famous for selling tools designed to unlock phones and extract data from them. As a result, their products are loved by law enforcement agencies across the United States, and police routinely use them to collect evidence from seized devices. However, despite being a hacking app, Cellebrite doesn't seem to care much about securing its own software - according to the CEO of encrypted chat app Signal.

In a blog post, Moxie Marlinspike claims that Cellebrite's software has poor security, which can be easily manipulated in some pretty amazing ways.

"We were surprised to find that there seemed to be very little interest in Cellebrite's software security." Writes Marlinspike. "Until Cellebrite can accurately fix all vulnerabilities in its software with extremely high reliability, the only remedy that Cellebrite users have is not to scan the device."




It's hard not to see this as a counter-argument to Cellebrite's recent claim that they can crack Signal's encryption. The Signal CEO even ended the blog by implying that Signal plans to spam Cellebrite with some sort of file with malware in the future.

In response to a request for comment, a Cellebrite spokesperson sent the Gizmodoi site the following statement:

"Cellebrite has strict licensing policies that govern how customers are allowed to use our technology and not sell to countries that are being punished by the United States, Israel or the broader international community. We protect the integrity of our customers' data, and we continually inspect and update our software to equip our customers with the best digital intelligence solutions available. "
Axact

Axact

Vestibulum bibendum felis sit amet dolor auctor molestie. In dignissim eget nibh id dapibus. Fusce et suscipit orci. Aliquam sit amet urna lorem. Duis eu imperdiet nunc, non imperdiet libero.

Post A Comment:

0 comments: