jeffw@lemmy.world to Technology@lemmy.worldEnglish · 1 month agoHow the Signal Knockoff App TeleMessage Got Hacked in 20 Minuteswww.wired.comexternal-linkmessage-square21linkfedilinkarrow-up127arrow-down10cross-posted to: pulse_of_truth@infosec.pub
arrow-up127arrow-down1external-linkHow the Signal Knockoff App TeleMessage Got Hacked in 20 Minuteswww.wired.comjeffw@lemmy.world to Technology@lemmy.worldEnglish · 1 month agomessage-square21linkfedilinkcross-posted to: pulse_of_truth@infosec.pub
minus-square0xD@infosec.publinkfedilinkEnglisharrow-up0arrow-down1·1 month agoThat doesn’t really do anything. Attackers need local access to the device to get the database itself. Chances are, they’ll get the key right with it.
minus-squareHappyTimeHarry@lemm.eelinkfedilinkEnglisharrow-up1·1 month agoMolly encrypts it using a passphrase instead of a locally stored key for exactly that reason.
That doesn’t really do anything. Attackers need local access to the device to get the database itself. Chances are, they’ll get the key right with it.
Molly encrypts it using a passphrase instead of a locally stored key for exactly that reason.