Crypto audit of Threema revealed many vulnerabilities

Researchers have discovered cryptographic vulnerabilities in Swiss-based secure messaging application Threema that may have allowed attackers to do things like break authentication or recover users’ long-term private keys. The vulnerabilities have been fixed and Threema has since switched to a new communication protocol they designed with the help of external cryptographers. About Threema Threema is a paid and proprietary end-to-end (E2E) encrypted instant messaging service that can be used via iOS and Android applications, as … More →

The post …

android application attackers audit authentication communication crypto don't miss e2e encrypted encryption end end-to-end external hot stuff instant messaging ios keys may messaging paid private private keys protocol recover researchers secure communications secure messaging security auditing service switzerland things threema vulnerabilities vulnerability