Blackphone SSL security flaw was patched within days, says CEO

Researchers checking out the $ 629 (£390) Blackphone ultra-secure Android smartphone recently found a potentially significant vulnerability that could have allowed an attacker to carry out a man-in-the-middle (MitM) to sniff the login credentials for the device’s Silent Circle apps.

The now-patched flaw discovered by Bluebox Security was a relatively straightforward if surprising one to do with the way the Blackphone was found to be implementing SSL security for its cornerstone apps, Silent Phone, Silent Text, Silent Contacts, Secure Wireless and SpiderOak.

To read this article in full or to leave a comment, please click here