According to the CSPF, when it tested the drive, it found out some flaws which are;
• Anyone can decrypt all files without the PIN and password.
• The encryption is AES and the key is inside the database on the USB (one partition).
• The software code never uses the hardware encryption, it's only to showcase.
• Anyone could change the pin/password without hardware encryption chip.
• The software code has so many security bugs that allows attackers to hack the drive easily.
Read original article
No comments:
Post a Comment