[bakron1]

Interesting read for those who think their consumer device is 100% secure.
Canadian police used BlackBerry's key to unlock BBM messages

[johnny_bravo72]

I think that was already mentioned here:
http://www.crackberry.com/blackberry...anadian-police

*C5303

[bakron1]

I think that was already mentioned here:
http://www.crackberry.com/blackberry...anadian-police

*C5303

Ok, didn't know it was already talked about, thanks for the info.

[anon(9721108)]

here's another take on it.....I just saw it in Twitter and thought I was going to be first to post it .....


http://motherboard.vice.com/read/rcm...ion-key-canada

Sent from my BlackBerry 9900 using Tapatalk

[eddy_berry]

This is in regards to BBM not being encrypted end to end and instead scrambled with a universal key. This has been known for a long time. Why do you think BBM Protected exists? BBM is also only completely secure on BES as is the rest of the device. If anyone is realizing this now then you have been duped by fan-boys. BlackBerry has never claimed that BBM was fully encrypted end to end.

Z30STA100-5/10.3.2.2339

[Superdupont 2_0]

Did they also share the encryptions keys for the TLS encryption on BB10, iOS, Android and WP?

With the global 3DES key one can only encrypt BBM messages on legacy BBOS.

[vladi]

No surprises here. Major companies have to comply to something in order to do business.

[GoJaysGo]

Misleading headline for this thread. The RCMP didn't crack the encryption, they were given the keys from BlackBerry. Although BlackBerry won't admit to that...

[Dunt Dunt Dunt]

This is a five year old story....

We have had numerous examples of criminals being taken down because of their use of BBM. This is not news at this point.... but then I guess El Chapo didn't read about all these stories either.

[tarmy88]

They were using PIN messaging not BBM


Posted via CB10

[tarmy88]

BlackBerry #1 feature is security. Why would they not respond to these allegations.
I don't believe your website more than I believe the original new article because every story is twisted in some way.

Posted via CB10

[raino]

The RCMP didn't crack the encryption, they were given the keys from BlackBerry. Although BlackBerry won't admit to that...

So how do you know this then?

[TheScionicMan]

What's this about Canada reading your BlackBerry texts?
What we knew in 2010, 2012 and 2014 we still know in 2016

What's this about Canada reading your BlackBerry texts? ? The Register

[Prem WatsApp]

Not to detract, but there are different opinions and viewpoints out there. Have a look at what uther blogs are posting... ;-)



�   There's a Crack in the Berry right now...   �

[Branta]

Misleading headline for this thread. The RCMP didn't crack the encryption, they were given the keys from BlackBerry. Although BlackBerry won't admit to that...

No surprise there, the cops probably turned up with a valid court order and BlackBerry complied.

[LSDBerry]

This is old news - and more importantly, the Canadian government is not the only government with access to BBM.

Furthermore, BlackBerry hold the encryption key anyway and can decrypt your messages themselves with or without a government request. Whether or not they do is another matter, but the possibility exists.

Truly secure encryption can only exist after eliminating this possibility completely. Would you think your super secure house was "completely secure" if the builder still had the keys? Of course not! Even if he had a court order forbidding him to use the key and the key was stored in a safe, the possibility of it somehow being used would still exist no matter how slim. A platform is not secure if an outside party is holding the encryption key. If you want a secure platform, you use a platform that keeps you in control of the encryption keys (for example, BES) and you maintain responsibility for managing your own keys.




Posted via CB10

[blueberrymerry]

So does that make WhatsApp more secure than BBM?

[tnbt42]

Wondering when BlackBerry will finally post an official statement.

SQC100-1 BlackBerry Classic

[CrackberryQ]

Well dunno about the whatsapp thing , Cuz I received a voice message yesterday from contact B but appeared in whatsapp from contact A (names withheld obviously) and when I replied, my answer went to contact A.

Apart from the hassle explaining my reply to the wrong recipient as I only noticed the issue after my reply, it made me think about the whole whatsapp encryption part, I thought there was a sort of unique identifier between each 2 contacts, so how come I was still able to listen to the message?

Posted via CB10

[LSDBerry]

So does that make WhatsApp more secure than BBM?

If it is using per device keys that are not centrally stored and that aren't stored with a master key, then at least in this area it may be more secure. Same with iMessage.

Of course, it could be far less secure in other areas i.e. there have been high profile security holes in iMessage that can expose data.

Posted via CB10

[crackbrry fan]

Well dunno about the whatsapp thing , Cuz I received a voice message yesterday from contact B but appeared in whatsapp from contact A (names withheld obviously) and when I replied, my answer went to contact A.

Apart from the hassle explaining my reply to the wrong recipient as I only noticed the issue after my reply, it made me think about the whole whatsapp encryption part, I thought there was a sort of unique identifier between each 2 contacts, so how come I was still able to listen to the message?

Posted via CB10

No its impossible for that to happen or at least that's what the what's crap supporters here say.

Posted via CB10

[sorinv]

http://business.financialpost.com/fp...10-report-says

This is from Financial Post

[blueberrymerry]

How many BBM users were on BIS vs. BES in 2010, as compared to now? It's a bit sneaky for BlackBerry to talk about its devices' security when all of its consumer-oriented services have been open to interception since 2010 or even earlier. How many individuals and SMEs can afford to run a BES server on top of Exchange anyway?

Apple's iMessage and WhatsApp encryption are different because there's no single skeleton key that unlocks each message. That's what they say anyway Each message is encrypted with a device-specific encryption key. iMessage and WhatsApp don't implement perfect forward secrecy with ephemeral keys though, so you could recover years' worth of conversations if you grabbed the device key.

[CBluver876]

That's a good question, I think that's what this report is implying. Silence is not always always a good thing

...so which one of you fine gentlemen would like to get me a ... Priv

[EFats]

I haven't been able to figure out a clean answer to this article yet. Is it legacy only, is it pin-to-pin, all BBM? From what I can gather, this is not a particularly difficult decryption feat. If you can re-route or duplicate send any message to your Blackberry device, you can read the message. If you are running your own BES server, you're ok. I could be wrong.

What's worse is that Blackberry has been silent on this issue. NOT GOOD!

I might trust Apple more, but not WhatsApp. Sure your message itself is encrypted, but they know everything else about you, your entire phone contact list, probably location, all other meta data which can print a pretty detailed list about you