It appears as though BlackBerry's global decryption key was previously obtained by the Canadian Police. According to a report, the police have had the key to BlackBerry devices since 2010, but neither the Royal Canadian Mounted Police (RCMP) nor BlackBerry will confirm the details of how it was handed over. From Vice's report:
According to technical reports by the Royal Canadian Mounted Police that were filed in court, law enforcement intercepted and decrypted roughly one million PIN-to-PIN BlackBerry messages in connection with the probe. The report doesn't disclose exactly where the key — effectively a piece of code that could break the encryption on virtually any BlackBerry message sent from one device to another — came from. But, as one police officer put it, it was a key that could unlock millions of doors.
It is also unknown whether the RCMP still has the global key sitting on their servers. While the key wouldn't gain access to enterprise devices, it does to consumer phones, which could mean that the police had been able to access phones for years.
Editors note - Something the Vice report forgot, though, is that this has been known since 2010 really. Even the Canadian Government advised against using PIN-to-PIN messaging and outlined the differences between BIS and BES at the time. There's not a whole lot of new information being added here. With that said, I fully encourage everyone to go ahead and review the BBM Security Note put out by BlackBerry here (PDF).
Reader comments
BlackBerry's global decryption key was obtained by Canadian Police in 2010
Pages
This story had been swirling around for a while now...but then again is anybody surprised?! So much for BlackBerry's commitment to privacy and security...LOL...
Cartman says: Nothing Due To Censorship
It's my understanding that BBRY devices are encrypted independently down to hardware. There isn't a "Universal Decryption Method" each device has to be hacked differently from the next, even if it's the same model. Doubt very seriously that this rumor will be authenticated.
Posted via the CrackBerry App for Android
There is a difference between unlocking a phone and intercepting PIN-to-PIN messages. Pin-to-Pin is capable of using Your own PKI in addition to BlackBerry key or at least it used to on non BB10 devices. Also corporate PIN messages could still be read unless implemented with a private key on BES server. If you want secure Instant messaging subscribe to BBM Protected which uses an additional passphrase.
Posted via CB10
This is old news and based on pin to pin messages through BIS and messages that were scrambled, not encrypted. The tech is over 5 years old and has nothing at all to do with BB10 phones. BlackBerry had always said that pin to pin was insecure. The story is misleading and doesn't explain the whole story. Read informative and researched information before coming to a conclusion... http://www.theregister.co.uk/.../canada_blackberry_water...
https://utb.pm/wiCfPo
Posted via CB10
So BlackBerry tries to differentiate themselves from other phone brands because of security. Although world governments are able to get into the phone. Hmmmmm
Posted via the CrackBerry App for Android
I don't use BlackBerry Messenger but if they have cracked one door open how many more have they opened inside the phones?
Posted via the CrackBerry App for Android
Could a disgruntled ex employee decided to pay BlackBerry back?
Posted via the CrackBerry App for Android
Let an iPhone get hacked and people on the forums go crazy, but because it's BlackBerry everyone just shrugs it off lol.
Posted via CB10
Read the story people! Good bye Blackberry!
Posted via CB10
Doesn't the Indian government also have this key??
Posted via CB10
Whatever the case this is yet another nail in the BlackBerry coffin.
Posted via CB10
They need to fix this right away, I don't want people snooping in my private information that isn't none of their business.
Very upset
Posted via CB10
I'm finally vindicated.
Also, this explains Chen's attitude toward Apple, taking the holier than thou stance because he knew his comapny was already an unpaid ***** to the entire world.
Anyone defending BlackBerry or boasting about its security: you've been Chenned!
I used to cheer this comapny on and was loyal to the core. But now I realize that in the corporate Game of Thrones, BlackBerry is King Joffery. It deserves to choke on its own poison.
Any phone, any company is more secure than BlackBerry. Tools not toys? Apple at least was a toy with a backbone. BlackBerry was a tool for big brother the entire time.
Chen belongs behind bars.
Z5 - E6853 / Android 6.0 / T-Mobile USA
There's no magic here - the RCMP asked BlackBerry for the key and BlackBerry gave it to them.
Posted via CB10
There is no way a global key is secure. But this isn't news.
I believe Facetime uses a global key. That is how GCHQ decrypts it.
Posted via CB10
Jackie Chen has always sounded squishy whenever he has spoken of user privacy rights. Now we know why. I think my next phone will be an Apple. At least they seem to be willing to fight for privacy rights, whether it's for the correct reason or not.
+1 million, me too.
Z5 - E6853 / Android 6.0 / T-Mobile USA
Wake up! Blackberry has betrayed the trust and loyalty of all its customers! It is the SURVEILLANCE arm of all governments where it sells its "secured" devices! Absolutely outrageous behavior by a corporation that touts security! Turn off your Blackberry phone and leave it in your garage when discussing private matters at home! The RCMP, NSA, European, Chinese, Indian, and other governments are listening and/ or watching us at home!
Old news, just for BIS. But then again, I use BlackBerry 10 too.
Likely the key's been changed since. Hahaha. Not worried.
Typed using my BlackBerry Classic running 10.3.2.2876 on WINDmobile HSPA+
Precisely why I you should buy a nice BES server license and link your device to it.
Posted via the CrackBerry App for Android
I really hope that this doesn't apply to bb10.
Posted via CB10
PIN 2 PIN messages on BIS which are scrambled only and from what I heard it was BlackBerry with PGP encryption....i believe BB10 with the new BBM security features is another story.
Posted via CB10
My "two cents" (again!)...
When Apple and Samsung started taking over, BB was plagued by "unfortunate" accidents:
Ban by India for releasing the encryption key, followed by network "failures" & "black-outs" just before each Apple new phone release (1-2 days!), ban by UAE, Saudis, Indonesia etc.
The result: over $2.7 Billion loss in stock value.
All phones can be discreetly inspected by a multitude of governments, regardless where we are! Same goes for all "Cloud" based PC programs! (I wonder how much data is mined out by the AV programs!)
The "revelations" about NSA spying on heads of governments are just the tip of the (******!) iceberg. Why would somebody bother to siffle for mine (or yours!) name on the list? The search was done for well known names.
Apple is "fighting" on the front pages of the media, playing cool" while in fact...
BlackBerry's fault is that it is NOT an US company YET!
Hours after canceling the intention to go "Private" (Prem Watsa loan from the big Canadian banks was suddenly "cancelled"), it was revealed that both Microsoft and Apple were ready to put a bid for BB!
Posted via CB10
https://news.vice.com/article/exclusive-canada-police-obtained-blackberr...
Here's full fleshed article. I think the company just got cooked.
Posted via CB10
No. This is nothing new. Pin and BBM were never secure.
Look at is this way. Apple hands over iCloud data at the drop of a hat. Has Apple collapsed?
Posted via CB10
They argued that disclosing the involvement of BlackBerry may "have a negative commercial impact on the company." They claimed that admitting to BlackBerry's involvement could compromise the police's relationship with it, and other technology companies that may be called upon to help."
Posted via CB10
Old news. The decription key was only good on Pin to Pin messaging and if I remember correctly also only applied to non BB10 phones.
Posted via CB10
Dudley Do-Right: This is Canada, Nell. Things are real up here.
Posted via CB10
https://cryptome.org/2016/03/cellebrite-msab-001.pdf (the whole document is very interesting, for Blackberry jump to point 92)
Don't be naive. There is no such thing as a 100% bulletproof solution. Never will be.
That's nothing new either, Celebrite publishes that on their site.
Bye-bye "global gold standard in security". Full stop.
Posted via BlackBerry Priv
Much ado about nothing.
Posted via CB10
Exactly! (except for playing again the BB stock!)
Posted via CB10
Lol at all people who are justifying they don't value privacy or detest prying eyes from 3rd parties. Excepting I am not Lol'ing. It's disturbing.
Man, I will be patient to see what comes of this. But this just crushed BB for me
Watch the BB stock plunging and Apple (or Microsoft) taking BB over "out of compassion"!!!
Posted via CB10
The only truly secure OS/Phone out-of-the-box is BlackPhone.
The only truly secure Email 'out-of-the-box' is ProtonMail.
Posted via CB10
Proton Mail is not secure if your browser is compromised. Hint don't use extensions in your browser that share variable space. A compromised adblock or other extension can steal plaintext.
The government can look into any device if they want.....
Posted via the CrackBerry App for Android
So how would this affect people with consumer phones in let's say the USA? Is this only localized in Canada?
Posted via CB10
All I can say is prove it.
Posted via CB10
Chen killed BBOS10 Pffft! Nuff said...
Posted via CB10
This all occurred before Chen's time. From Wikipedia...
In 1992 Lazaridis hired Jim Balsillie, and Lazaridis and Balsillie served as co-CEOs until January 22, 2012.[5]
Oh boy
Posted via CB10
This is for PIN 2 PIN messaging. This type of messaging was the precursor to BBM. BBM maintains a different encryption method and thus is vastly different from PIN 2 PIN messaging. If I remember correctly this was mostly used by govt workers during the early days of BlackBerry devices.
Posted via the CrackBerry App for Android
Lol good thing my z10 and z30 spent most of their life on a company bes server.
Z30 STA100-5/10.3.2.2474
I feel a little hollow. BlackBerry, I feel has betrayed their mantra.
Posted via CB10
I get all the technical arguments re BIS vs BES, BB7 vs BB10 etc. Only a handful of commenters have hit on the real issue: why was a global key given to the RCMP to deal with a handful of phones, what happened/will happen to the key after the case, and was it used for any other purposes?
BlackBerry is required to comply with court orders. It's their choice to comply immediately, or after fighting and exhausting every appeal possible. Their actions are telling. Instead of providing the means to get information on these phones, they provided the skeleton key to the entire kingdom.
I still trust BlackBerry as much as I ever did. I distrust the ability and motivations of the RCMP to keep that information secure, and/or not share it with other gov't agencies within Canada and abroad.
There is no way, from the story provided, to determine if any controls were in place. Hopefully someone like OpenMedia will file Access to Information requests to get the rest of the story.
Posted via CB10
One of these days, the complete story will be told. I am amazed that BlackBerry provided a master key to the RCMP - most probably for os6/os7 devices. What about BB10 devices? It's time for Chen to fess up on this situation.
Also if the RCMP has the master key - I would assume that other similar agencies around the world have received these keys through collaboration agreements.
I agree with you that more digging needs to be done by the media - the only true watchdog that we have left to get to the bottom of this.
It isn't clear if Blackberry provided the key. How does the key get onto a brand new Blackberry out of the box? Could the RCMP have been a 'man in the middle' during this transaction? We know that the NSA records all traffic over the carrier's airwaves. Could they have provided RCMP with the relevant snippet of data?
One detail left out from the Verge article is that corporate clients can use their own key so corporate communications were not affected. Personal Blackberry messages could be decrypted though by the RCMP in this time period. This story won't hurt Blackberry in the corporate sphere but it will hurt them among people who buy Blackberry for personal security. I hate to say it but most personal buyers are not as fully focused on security as the corporate world so I think that the commercial damage is minimal. It will hurt their overall reputation as a bastion of mobile security.
Lmao no kidding, also 6 year old news come on seriously!!!
Posted via the CrackBerry App for Android
They can have their key whatever, but they can't picture unlock my three year old Z10
Posted via the CrackBerry App for Android
Wow a Tupac joke - I heard comedy central's hiring.
Posted via CB10
Ahhhhh, 2010...the memories. Doesn't six year old news have a strange way of coming back to life, especially when it coincides with the exact day it is published all over the net that Gartner has recognized Samsung Knox 2.6 as "the strongest mobile security platform".
Posted via CB10
I'm done. Finished. This is the last straw. I have had BB's since '05 and done so because of the security.
Though I long suspected that this was the case, I'm just fed up with the lousy desktop software, the minimal updates and the total shirking of the BB ecosystem. Goodbye dear BB.
The world full of sadness.
Posted via CB10
This is a slap in the face to all retail Blackberry customers. Now I understand why Blackberry never released any transparency reports in Canada and the rest of the world for that matter. If these reports are indeed true - this is the big straw that broke the Blackberry camel's back. Now Blackberry wants to sell us a Priv - in your dreams.
I still can't believe that I am reading comments from people saying: I have nothing to hide...sheeesh.
LOL now that BB isn't totally secure, what is your USP now? XD
Posted via the CrackBerry App for Android
I know it's off topic please forgive me. Has anybody with whatsapp had issues sending pictures and videos to other contacts over the last week? Don't worry I'm still in love with bbm. Sent from my supreme passport
Posted via CB10
India must ask BlackBerry for support to get information, Indonesia just kiling the network if there is a strike against training kamps or just to get terrorist and same in more countries, how is it possible the canadian police has a master key. Could it be that they had monitoring the Canadian Goverment ,because they had information about there BES server?
Они уху ели ключи раздавать!
No I don't think so...
ฬฬฬ. cåř๓. ℴřg
No idea what he said by the way. Just gave a standard answer when you have no clue to what was said. Haha :)
ฬฬฬ. cåř๓. ℴřg
I have nothing to hide, go ahead an look through my phone
Posted via CB10
"Too unsecure"
Blackberry shuts down device business saying it's too unsecure.
Posted via CB10
This article is incomplete and misleading. The original claim must be read more carefully: only PIN-to-PIN messaging intercepts were possible with the release of that key. And lawful intercept is a legal requirement; if BlackBerry could help, it had to help.
Vice's article is similarly incomplete and misleading.
This has nothing to do with end-to-end encryption. There is no middleman master descryption key possible. So no, that key is not going to unlock all of your BlackBerry's lovely emails, files, etc.
Remember all those lovely security certifications that BlackBerry has, that no other platform still has. Remmeber all the government communications that go over this entire infrastructure, and how many millions of man years would have gone into all of the code and system design audits before the spooks et al. would use this infrastructure. Think they really would have done an oopsie and missed the big glaring master key, the one security hole that Joe Forum Public understands?
Just goes to prove how dangerous it is to arm the public with a little, but not enough, information.
Well I am from Canada and have been for seventy years, I don't recall any RCMP or any other police knocking at my door for a breach in phone conversations and I have said some bad words and things, Jesus guys grow up the World's not going to end. And if it does I probably won't remember it. If you are a criminal and get caught, tough luck.
Pr1ngle
You don't have to be criminal to get caught up every single day.
It's enough to use Google …err…I mean Android…err…I mean BlackBerry.
I agree that the RCMP or other police entities have not knocked on your door - they can do this remotely LoL
Your last freedom is privacy, methinks a body should be able to send information to a person without anyone else reading it,I think you should be able to keep your recipes secret from prying eyes!
The few, the proud --Z30
Posted via CB10
This sounds very much like the triple DES scrambling key that was used by default for all BIS pin-to-pin and BBM messages. If this is the case that key was on every BlackBerry BBOS 7 and prior phones and could be gotten by anyone with a little technical expertise, especially if they had one of the early BBOS phones.
BB10 doesn't use BIS. BlackBerry never claimed BIS was encrypted. Nothing new to see here vis vis BlackBerry. It would be interesting if any of those messages were not the subject of a court order.
LeapSTR100-2/10.3.2.2876
Outrageous for Blackberry to just hand out its global encryption keys to governments for use at their pleasure! How can a company selling "Security" and "Privacy" for our communications be so stupid to do this? Blackberry and its management should be held accountable! We expect our our God given rights to be respected at all times! Blackberry discloses the use of a global encryption keys for ALL phones, including BB10 and the PRIV. All Blackberry PIN, SMS/MMS, and BBM communications can be decrypted with the global keys, now in the hands of governments everywhere (very likely!). You have to subscribe to BBM Protected to avoid such flaw, if we are to now believe Blackberry? Here is an excellent comparison of app messengers security: https://www.eff.org/secure-messaging-scorecard
Why is this news to anyone? I've been talking about the fact that BlackBerry users seem to go to prison because of their BlackBerry on this site off and on for years now.
The die-hards simply reply with garbage about how BlackBerrys are super duper secure and can't be hacked, but the fact remains that there are hundreds of people who have been brought to justice thanks to information that was taken from their BlackBerry.
I first started talking about this topic after the Craigslist killer was caught thanks to his BlackBerry Storm. That was way back in 2009. How many other people have been brought to justice thanks to the open book in their pocket since that happened?
The London rioters, those Brazilian criminals and now these gang banging murders.
Fanboys can say whatever they want, but you would have to be a complete and total fool to still believe that a consumer BlackBerry device is secure after all that has happened.
BB7 devices. And they were given the codes by BlackBerry. Where as Android and iOS, they easily cracked them.
Court Order. Sometimes you can't fight it.
Rocking a Z30
Android and ios don't even use the key..
Iirc, messages between bbos and ios are unscrambled aka in plain text at the server
Might be forgetting a few.. 7280 >7290 > 8310 + 8130 + 8220 > 9000 + 8900 > 9700 + 9800 + 9100 > 9780 + 9810 + 9900 > playbook > z10 > PassportSQW100-1/10.3.2.2639
BlackBerry is done! BlackBerry will be gone.
Posted via CB10
CB should add this to the above lol http://m.crackberry.com/pin-pin-messaging-secure
Posted via CB10
Take shelter.
Posted via CB10
Really hope this is not true... that is all is left to BB
Nail, meet coffin
Posted via the CrackBerry App for Android
Oh wow, that's interesting!
Posted via CB10
Now BlackBerry is going full throttle to kill the handset department!
Posted via CB10
Kill the handset department for sure, because apparently they can't secure there own decides let alone any other platforms too LMFHO. Good Job for not listening to your customers. Face Palm. Up side the head.
Rocking a Z30
Iove how this old news popping up, i remember reading this in the globe about the bust and pin to pin being used to catch the crooks. But carry on. Lol
Posted via CB10
The bottom line is (and I am sure that there will be a backlash on this) if one is not doing anything illegal, what is the concern? If you are a law abiding citizen (of any country), what is your worry? Are you afraid of your family recipe for spaghetti sauce that has been handed down for generations is going to be simmering on the police department's kitchen range tomorrow or in the near future?
Give it a rest!
Posted using a Q10, 10.3.2.2474.
I think you're safe, people seem to be done trying to explain how backwards that thought process is.
~TheRealFixxxer
So you have no issue with a daily police search of your house? You have nothing illegal so no problem right?
Posted via the CrackBerry App for Android
You are correct. As long as the search is scheduled not to conflict with my schedule.
Posted using a Q10, 10.3.2.2474.
I'm sorry, but you would not be OK with that.
Would you also be OK with them scanning all the documents you have stored in your house so they can keep a copy of it as well?
C'mon, don't be ridiculous.
~TheRealFixxxer
BBM is secured via TLS when chatting with an Android, iPhone or WP. When chatting between two BB10 devices the data is secured via TLS and on top of that the global decryption key. TLS has been introduced since BBM went cross-platform. It is just the decryption key that was known so for already three years the RCMP does not have access to BBM messages because they cannot hack the TLS connection. PIN- to PIN messaging does not have TLS but only the global key. But this has been known for years and there have been warnings that PIN- to PIN messaging is not secure. http://www.pcmag.com/article2/0,2817,2416095,00.asp
They wouldn't capture in transit so TLS, which is also used in most major email, doesn't apply, this is not a MITM attack vector. Once traffic is at the server thats where the key would be used.
To what server does the police have access?
Where Blackberry servers are located aren't a secret to the law. Apparently the 'comfort letters' the RCMP issues have way too much power.
One should understand that this was for the BIS services and are still just rumors.
One can debate that the BBM environment only do scrambling of its data, but with a different key than BIS and for BES BlackBerry doesn't have any keys at all.
Um okay wtf bb...
Posted via CB10
This needs to be addressed immediately
Posted via BlackBerry Priv
Hmmm...it may be time to just go back to sending handwritten coded messages on horseback. At least, you're getting your money's worth with a horse that lasts longer than a "high end" BlackBerry device/OS, and your personal communications would have to be physically intercepted. Thus, making those who want your personal info actually have to work for it, and in some cases, allowing you to actually know they are stealing, my bad, "acquiring" it.
Posted via CB10
Watch out mounties have horses too.
This article is so BS. BlackBerry left Pakistan because of similar ****. BlackBerry would never give that out. Plus then why could court not get on my Blackberrys since then!
Posted via CB10
Calm down. The Mounties having the ability to intercept your BBMs will not ruin your day.
It is the principle of it. Again, a key to all communication is different than lawful access. A key to a specific door of a known criminal with warrant is not the same as a master key to everyone's door.
my first foray into droidlandia
Wow . . disheartening. Lawful access should not include disclosing the key but providing the specific info required under court order!
my first foray into droidlandia
Think of the lost criminal customer base! The horror!
This Passport takes me places!
Hahahahahaha *smfh*
Haha Chen the trojan horse.
I was like the only one here not liked him from the start.
And I was **** right.
Killed OS10, wants us to buy that overprived black brick of smartphone with old hard AND software.
Muahaha! Not working Mister, not working.
Posted via CB10
Totally agree....he lives in N. Cali in the land of the Google. He is one of them. They hate the privacy that BB10 provides
Posted via CB10
I know it seemed like you were alone but you weren't. I was with you the whole time.
Z5 - E6853 / Android 6.0 / T-Mobile USA
Holy Crap... it just keeps getting better. SMH
I'm sure they key has been changed BlackBerry aren't idiots lol if they even had it at all
Posted From BlackBerry Priv
Hasn't Mr Chen always said he will not deny lawful access. The RCMP would be using this for lawful means otherwise the event vidence would not be admissible in court.
In addition, hasn't the common answer to is a BlackBerry any more secure than any other phone has been answered, only if it is on a corporate BES.
Although it is news, it is only confirmation of what we have already been told.
Posted via CB10
Chen better put out a Statement and a fix for this asap!!
Posted via CB10
This can't be fixed with a statement. BlackBerry would have to re-architect BBM (at least for BBOS - this may not apply to BB10).
This is nothing more than intentional effort approved by Chen and the board to publicly shame BB10 in order to have us believe that there is no difference between BB10 and Android in the terms of security. Chen has been a trojan horse intended to destroy BB10 from beginning. That is why he stays in N. Cali most of his time and cozys up to the monster called Google. He does not want BB10 around-that is why most of the engineers that worked on it are no longer with the company. Chen is a globalist-politician in the hands of Google and others who do not believe that the individual has the right to privacy.....to prove my point-I erased my Google Chrome account from my computer for 6 weeks. I had it installed again 4 days ago. All of my previous passwords, history and usage was saved by the Google despite the fact that I requested to have my Chrome account deleted......BB10 was the ultimate in the terms of PRIVACY and security...that is why it has to go away.
Posted via CB10
Lol what. The events in the article happened before Chen even came on board. The court case only now ended so how is this Chen's fault.
Sure....and it just happens to be released in the midst of the push to convince hard core BB10 supporters and others that Android is as secured as BB10....Just a coincidence? Read the entire article from Vice-this case has been on trial since 2013....Why now?
Posted via CB10
You should read it. The appeal ended MARCH 30TH. Canadian legal system is as slow as the USA apparently.
Again-why now....why not one year ago....the trial was not closed. They had access to the info the entire time.
Posted via CB10
Because they'd have to write another article about what happened when the judge ruled that the global key would have be disclosed to the defense a key point which never happened because the case ended. Also we don't know what the Canadian rules of evidence are whether things are sealed until after trial etc.
Where the Global Key came from was not disclosed...However, the media knew about the trial for more than 2 years according to this article. The only part that was sealed/ not disclosed was about the key itself....the fact that BlackBerry was cooperating was known. So, now, "suddenly" it is "discovered" that the police had access to the system. It just does not add up, unless someone is deliberately trying to portray BB10 as another OS that can be hacked just as Apple or Android. The article never states how was the key acquired-was it hacked or provided by BlackBerry. Either way, the implication is that BB10 is not as secured as we believed. If Chen really supported BB10 he should be having press conference in the next 24 hours explaining what happen. I doubt that he will.
Posted via CB10
Because the trial ended the defense also never found out how exactly the key ended up in the government hands. What rules were agreed upon on its use, a whole lunchpail of things. After the government had the key they still kept in touch with Blackberry so some back-and-forth between them happened but we don't know what. It's possible BB agreed to give the key in exchange for the government giving BB a list of accounts accessed. We just don't know all the things we should know which is another reason the article came out when it did.
Funny that you say its to kill BB10 but if you read the article you would know they got the key in 2010. BB10 wasn't released until 2013 so please explain how the RCMP were using the key in 2010 to get into BB10 phines which weren't released until 2013?
BB7 or BB10 does it really matter? The case started in 2010 during BB7. However, according tot the article as of 2014, the media knew that Blackberry was cooperating with police. The only thing unknown is who gave the key to cops-BB or cops hacked into a system. Either way BlackBerry 10 looks bad-so it's time to shut it down. At least that will be the argument of many.
Posted via CB10
Your claims are both comical and ridiculous. Thanks for the laugh, needed it today.
Posted via the CrackBerry App for Android
Thanks....keep using your Google/Android.
Posted via CB10
Hahahaha!
Posted via the CrackBerry App for Android
Apparently, you chose the blue pill.
You must be a "true believer" as well...I bet you think that the Google or Facebook is not storing everything about you? Or that Zuckeberg really donated 45 billion to the "charity" in his daughter's name instead to his privately controlled LLC in order to avoid paying ANY taxes on his enormous wealth. Or maybe you still believe the media that Sadam had the weapons of mass destruction? Keep believing what the media is telling you and I will continue to claim that BB10 is being deliberately sabotaged by the media largely controlled by people who believe that the individual privacy should not exist. Unfortunately, Blackberry and it's CEO have no strength or willingness to fight them back. Just my opinion-hopefully, I am still allowed to have one.
Posted via CB10
The irony if people say that they will stop using BlackBerry because of this...meanwhile in iOS and Android town. *sips tea*
Pimp slappin iGeeks, Droinerds and Windufuses with my big white Z30
Naw, no one will stop using BlackBerry because of it. In fact, many will simply refute the claim and insist that all BlackBerries sans Priv are the most secure.
I concur...And this thinking is very wrong.....basically don't trust any device that requires government approval before it reaches the consumer. Lol
Pimp slappin iGeeks, Droinerds and Windufuses with my big white Z30
Meanwhile in iOS town the company is fighting for your liberty while BlackBerry relinquishes it willingly? I fail to see the point of your comment.
/sips bourbon
~TheRealFixxxer
Pretty sad how this type of thing is happening still...
Posted via the CrackBerry App for Android
You know exactly what i'm getting at...but i'll go ahead and sip your bourbon with you since I hate drinking alone.
Pimp slappin iGeeks, Droinerds and Windufuses with my big white Z30
I'm no tech expert here, but this is for Pin to Pin. I don't know anyone who pins anymore. Is this relevant?
Posted via CB10
Pin to pin = BBM which is just a UI for Pin messaging
Pimp slappin iGeeks, Droinerds and Windufuses with my big white Z30
The only PIN to PIN messages I ever get is
PINdonesian spam... ;-D
• There's a Crack in the Berry right now... •
Too bad a news
Posted via CB10
"There is a building. Inside this building there is a level where no elevator can go, and no stair can reach. This level is filled with doors. These doors lead to many places. Hidden places. But one door is special. One door leads to the source."
Let's see who is the first to understand this... Haha
ฬฬฬ. cåř๓. ℴřg
Good stuff lol
I feel ashamed that I had to StartPage it (I don't run the Googles like Chen).
Passport/SQW100-3 .2876 CB10
Good tip "StartPage"
https://www.startpage.com/
ฬฬฬ. cåř๓. ℴřg
But you're still using Google, just not directly. I use duckduckgo.com It's even better than Google.
Posted via CB10
Yes I use that one too. This other one (startpage) was new to me.
https://duckduckgo.com/
ฬฬฬ. cåř๓. ℴřg
Yes. I use both and still delete all cookies after that. I don't trust duckduckgo and startpage either... they are free...
The Matrix. :P
Posted via CB10
Yes a quote from the Keymaker (Character)
from The Matrix Reloaded movie. :)
ฬฬฬ. cåř๓. ℴřg
I enjoyed those movies; guess I've not really grown up. :)
Posted via CB10
No one really grows up, it's just that our bodies give out, but our souls live forever. God has put Eternity into our hearts. Ecclesiastes 3:11
:)
ฬฬฬ. cåř๓. ℴřg
Amen. The children will have the Kingdom... ;-D
• There's a Crack in the Berry right now... •
Children are being grown analdroided.
They learn to live locked inside a toxic cloud since their infancy.
Their brains are put into passive mode and their cognitive development inhibited to favor the fish market "democracy".
This is rather the trama of the movie, but looks like these days, the damned hypnotic ads business must triumph over human evolution. We're seeing parasites slowly killing the host individuals, which never happens in nature.
This makes a good business though! My best complements to the dismal science gurus!
Is that the ultimate "mission" of the highly over evaluated adware platforms?
Nobody cares, but this truly is a CRIME against Humanity.
Bb10 had the mission of preventing this or at least to provide an agnostic alternative.
They were on spot since day 1.
Z30 10.2.1 FLOWING. Powered by QNX!
The matrix...to obvious!
Strange how this comes out as the BlackBerry handset business is in its death throes. It just won't die...looks like someone is trying to help it along.
Posted via BlackBerry Passport
Ha!
Posted via the CrackBerry App for Android
So true!
Posted via CB10
Well, I guess that puts an end to the argument that BlackBerry handsets are more secure than any other....
Posted via CB10
only BB fanboys believed that.
We're talking about BBM here, not handsets in general.
It's much harder to gain access to the handset itself. If the information emitting from the handset is up for grabs why would I need your physical device?
~TheRealFixxxer
This. Everybody knew BBM was not safe unless you were on BES.
Yep. It's a strawman argument to say "Nobody knew - and NOW THIS!" ...
;-D
• There's a Crack in the Berry right now... •
Hmmmm. Very interesting
Posted via CB10
Not surprised at all.
Still secure, though, for enterprise customers. Tough luck for consumers, particularly the BB10 diehards here.
*C5303
Zzzzzzzzzzzzzzzzzzzz. Bravo why are you here? All you do is bash BlackBerry at every opportunity. Dude you need to disappear to a new forum.
Posted via CB10
Awww... Got an issue? Here's a tissue! ;)
*C5303
To many bugs in the Android forum, he likes to come here where it's clean... ;)
ฬฬฬ. cåř๓. ℴřg
Actually, I'm here because I'm quite curious to know which of the following would likely happen soonest:
-Release of a new BB10 handset;
-Hypervisor;
-Android runtime update.
Hmmm. :)
*C5303
Or the change from apps to HTML 5.
Posted via the CrackBerry App for Android
If the RCMP have it that means it's leaked and other people have it too. A key shouldn't even exist. This is a pretty big nail in the coffin.
Posted via CB10
You kind of need a key for cryptography to work. I'm guessing you meant that there shouldn't be a single key, which definitely seems like a nightmare waiting to happen. If anything, we're lucky it took that long for someone to get the key.
Posted via CB10
How is it that one company could have screwed up in so many ways.
Posted via CB10
End of the day they have been able to get in to anyone's phone the just don't tell anyone......so shhh...keep it quiet....
Posted via my magical Passport, keeping the dream alive Scotland Aye!
This news doesn't really change the fact BBs are secure, but it **** sure implies that Canadian police have the ability to monitor AMERICAN communications! And that BlackBerry Fact, is leaving a sour taste in my mouth. If a government is going to spy on my communications, I'd rather it be my own government and not some bumbling foreign police force!
Created by fingering my sexy Blackberry Classic Keyboard..but I think the Priv wants me to touch her too!
Yes, everyone knows those 'Canadian Police' are the most "bumbling" of all law enforcement. They are far less deserving of the right to spy on anyone than the American government is - not to mention how they obviously lack the same respect of the American Government to ONLY spy on their own citizens. Also, did you hear that they still use hockey sticks as weapons and wear beaver pelt underwear? Savages!
Don't get your panties in a wad, none of em should be spying but he's right in that foreign law agencies shouldn't be spying on anyone without cause, nsa included with the mounties
Posted with my shiny new Priv
I'm not trying to argue what law enforcement "should" or "shouldn't" be doing but to think that Canada is doing anything that the US isn't already is absolutely blind. Those that can, do. Period. No countries' borders are going to stop those with power from using that power wherever they please. Sorry to burst anyone's bubble!
It's a 5-eye partnership. Canadians spy on Americans, Americans spy on Canadians because it is illegal to spy on your own citizens.
The New York Times server was (still is?) hosted in Australia for the same reason. The Australians can safely spy on NYT and pass on the info to their American 5-eye partners.
Why would NYT use an Australian server and company? This was in the news 2-3 years ago when the NYT website was down. They blamed this Australian company...
Oi, oi, oi... we've gOZ all your datUS.... ;-P
• There's a Crack in the Berry right now... •
Hahaha superb!
Posted via CB10
Governments do what they do.. Makes BlackBerry look bad regardless .
Created by fingering my sexy Blackberry Classic Keyboard..but I think the Priv wants me to touch her too!
The media will, surely. And that's what will do most of the damage.
In truth though, Chen himself, representing BlackBerry, has advocated compliance with assisting government and law enforcement. The whole Apple vs. FBI thing is messed up for a lot of reasons and, in the end, their software was compromised without their permission (which seems worse for their reputation, in my opinion).
It's the whole 'Security vs. Privacy' debate and it would seem that it is impossible to have either one absolutely without compromising the other. BlackBerry is trying to balance the two, as they should, and this seems to be the latest excuse for the media to bash BlackBerry. Nothing more really.
^ Flawless
Posted via the CrackBerry App for Android
Yea..
Posted via the CrackBerry App for Android
I'd rather have privacy......
Working Wide with my Passport to Perfection
Without the Android OS
Working Wide with my Passport to Perfection
Honest BlackBerry, implement :
- E2E encryption
- No metadata
- Forward secrecy
Posted via CB10
Which is why BBM Protected should be an easy in-app purchase from BBM just like the other consumer subscriptions.
Passport/SQW100-3 .2876 CB10
Agreed.
Yeah, true
Posted via Android while my Z30 rests
Run out and buy a Priv! Some leaks just baffle me :-)
I wonder how all these "BlackBerry or nothing" do or die fans on this site who have been dissing other manufacturers about security will feel now. Lolololol.
Posted via the BlackBerry Priv®
Actually, everyone here that's been paying attention knew this was in the mix lol http://is.gd/zVXcY4 and http://is.gd/5j6AsY are a good start from around that same time in 2010.
Passport/SQW100-3 .2876 CB10
And Whatsapp just implemented the end to end encryption on the latest update for everyone. I knew our BBM messages were never encrypted except those that use enterprise. Now BBM is left behind. Gimme one reason to keep using BBM as a consumer when my messages are still not end to end encrypted. Talk of a company that thawt itself as best security out there.
Customized Black & White Q10
BBM messages are encrypted... With the universal key.
I know right....
Posted via the CrackBerry App for Android
BBM is encrypted in transit with TLS on BB10.
This "global key" they are talking about is the single key used to "scramble" legacy BBOS BBM messages and legacy PIN messages.
It's how BlackBerry have always been able to reveal people's consumer BBM messages to law enforcement since forever.
Posted from the CB10 app on my BlackBerry Z30 STA100-2/10.3.2.2789 on O2 UK - Activated on BES10.2.6.28
Because Facebook owns whatsapp and if you think they aren't hanging on to your messages you should probably think again. Nothing is safe anymore
Posted with my shiny new Priv
They can't "hang on" to your messages as it's E2E encrypted with Open whisper systems - Signal protocol
Metadata however it's another story
For more secure messengers look at
- Signal messenger
- ChatSecure
- TOX
- Ricochet.im
- Cryptocat
Posted via CB10
You forgot Telegram Messenger - E2E encrypted, and open source.
All the services I've mentioned are open source
Did not mention Telegram because the cryptography community has some issues /doubts about the encryption scheme used
Posted via CB10
So they read your texts and then what?
Posted via the CrackBerry App for Android
Sell your profile... :-D
• There's a Crack in the Berry right now... •
Using BBM protected you will have a more secure solution than WhatsApp...
As an example:
If you add a person in WhatsApp you only do a one way verification of the addition, and not a two way...
The very same solution that BBM has had for some time...
For BBM Protected you verify any intact additions on both sides.
Signal is by far the most secure messaging app.
Posted via the CrackBerry App for Android
You know it's still a rumor and has nothing to do with BBM but was BIS?
Even if BBM just scrambles the data it does it with other keys than the BIS did.
I assume you also understand that Blackberry's hardware root of trust, which no other mobile have, plus 70+ security certificates makes a difference?!?
Or are you just a troll :0)
HitlerCat is on the loose...?
Who let the cats out...? ;-P
• There's a Crack in the Berry right now... •
No, this is about BBM and P2P, not BIS. It may or may not apply to BB10 devices, but it definitely applies to BBOS devices. It does NOT apply to iOS/Android/Windows Phone BBM clients. It's also not a rumour - read the articles, this came to light from court documents.
BlackBerry's hardware root of trust is for ensuring the OS loaded is signed by BlackBerry, it has nothing to do with this. It's also NOT a BlackBerry exclusive - Apple's Secure Enclave is very similar.
Hardee Har Har comic man. Perhaps you should stop WONDERING and start PAYING ATTENTION. Get out of Wonderland and start making sense. You see what fools have come to Crackberry. They opened the door and let the Android Tarts in.
Posted via CB10
"We" positively KNEW that plain BBM encryption or "scrambling" wasn't high-end or even bulletproof encryption.
Still, we used it and are using it... :-)
If you want something better, go and get BBM Protected (enterprise), and keep moving...
• There's a Crack in the Berry right now... •
When you only use one key...
They are watching this too
Blackberry Passport Running 10.3.2.2813
So the rumors were true
Posted via CB10
****!!! Another barrage of dissing BlackBerry online is about to kick off. They screwed that up big time.
Posted via the BlackBerry Priv®
They should use it against the bad guys...only..
Posted via CB10
Who defines 'bad guy'? That's the problem.
Posted via CB10
This.
:-)
You could have been a Jew in **** Germany, belong to the wrong tribe in Syria, ... or be a Christian in the coming AntiChrist gov't... ;-P
• There's a Crack in the Berry right now... •
I was just discussing this the other day about anonymous. Up to press they have released some videos on the work they are doing which included shutting down social media accounts trying to recruit members for isis and bank accounts and bit coins used to fund the war. They also hacked trumps Web sites and exposed any information they had on any of his dubious dealings. I'm still down with that because I personally think the man's a ****. However, Trump had a lot of supporters who wanted to vote for him so who decides what's right and wrong.
Say for instance anonymous take issue with apples tax affairs and bring something down of theirs meaning apple users can't access the istore or something, at what point do they become terrorists?
It's a fine line between a terrorist and a freedom fighter, the mujahadeen can vouch for that.
Posted via CB10
Can we agree the plutocracy is evil...? ;-D
• There's a Crack in the Berry right now... •
Messages You Send To This Chat And Calls Are Secured With End-to-End Encryption. Tap To Verify.. There You Go Chen.. You Don't Have To Be An Enterprise User To Get This Feature. BBM Has Been Around Longer Than Whatsapp.
Customized Black & White Q10
It's Annoying When You Talk Like This
Posted via CB10
In government eyes everyone is bad!
Posted via CB10
Is potentially bad... maybe they've got something to hide?
:-D
• There's a Crack in the Berry right now... •
Smh
Posted via CB10
*face palm* this was before Chen or even thorsten. Hopefully Chen will address this somehow
Posted via the CB App for PRIV
They just have the key to all consumer BlackBerry phones. No biggie. I'm surprised the pin software hasn't been changed in 6 years. Or is the key an evolving one that can change to unlock whatever BlackBerry messages it wants?
Posted via the CrackBerry App for Android
No BlackBerry phone can be unlocked. The rumor is about BIS and still a rumor...
Remember all of those rumors about what the NSA was capable of and had access to? Don't be so quick to write it off as a rumor.
8830
Agreed
Nope, not in this day and age.
…because working collaboratively with law enforcement on any level for the collective good and safety of others is inherently bad.
Posted via CB10 and the BlackBerry Passport
Because no one in law enforcement has ever abused their privilege before :)
Posted via CB10
Its not about catching criminals..given that kind of power even law abiding citizens will come under suspicion for anything and everything, intentionally or unintentionally
Posted via the CrackBerry App for Android
go buy a tinfoil hat
also "posted from Android"?? :D lol ironic android has no security
Posted via my Zed 10 Vader
How smarter is voluntarily delegate the GOOOOGLE, FB and the like to control your life?
They aren't law abiding ... simply because there are NO LAWS to regulate and prevent the electronic dictatorship.
What is the role of the antitrust committees today? Clowns!
Z30 10.2.1 FLOWING. Powered by QNX!
It's a slippery slope..... do you trust law enforcement in every country?
What if 230 years ago the British, who were the law in the American Colonies had the Key to listen in on suspected terrorist at that time? Sadly there are countries in this modern world that still have dictators ruling them.
Oh, dear founding fathers, go visit them in jail...
Guantanamo..? =8-o
• There's a Crack in the Berry right now... •
Keep dreaming...
8830
Chen has already said he will hand over anything that the government requests at any time.
BlackBerry Priv with CrackBerry App for Android
He sure did. Don't know if I can trust BlackBerry anymore..
Posted via the CrackBerry App for Android
On Analdroid?
Definitely not...
LOL
Z30 10.2.1 FLOWING. Powered by QNX!
The we go... Contradicting Chen Strong security claims. Smh!
Customized Black & White Q10
To be fair, BlackBerry's security claims have only ever been for BES (device encryption is scary and makes one think because of how Chen responded to the FBI- Apple situation).
Passport/SQW100-3 .2876 CB10
But according to BB10 diehards, BB10 is the most secure OS on the planet straight-out-of-the-box. The fact that it requires a BES account to become truly secure seems to not matter much.
But this was before even BB10 was made, right?
Don't confuse the fools with the facts!
And it was only PIN-2-PIN.
Per BlackBerry, BBM is built on the P2P infrastructure.
http://support.blackberry.com/kb/articleDetail?ArticleNumber=000010498
BBM Security document http://help.blackberry.com/en/bbm-security/latest/bbm-security-pdf/BBM-S...
"BBM encryption key
The BBM encryption key is a Triple DES 168-bit key. A BlackBerry device uses this key to:
• Encrypt BBM messages that it sends to other BlackBerry devices
• Authenticate and decrypt BBM messages that it receives from other BlackBerry devices
Each device uses the same global BBM encryption key, which BlackBerry adds to the device during the manufacturing process."
Now, it also says that BBM on iOS, Android and Windows phone use TLS encryption. It also states that BB10 devices *sometimes* use TLS encryption in addition to the BBM encryption key. I'm unsure if TLS would be more or less secure than the BBM encryption key.
Fun facts
https://en.m.wikipedia.org/wiki/Triple_DES
https://en.m.wikipedia.org/wiki/EFF_DES_cracker
http://stackoverflow.com/questions/5554526/comparison-of-des-triple-des-...
http://www.codeproject.com/Articles/91628/Simplified-version-of-the-DES-...
Posted via CB10
It got deleted...
Check a few uther blogs and see what they say... ;-P
• There's a Crack in the Berry right now... •
What are you guys afraid of... ? LOL :-D
• There's a Crack in the Berry right now... •
Pages