- security News Forums
- > NIST-certified USB Flash drives with har...
- > Re: MXI MXP Stealth device was also hacked.
Posting 
- Thread
- Reply
- New Topic
- Show Thread
Re: MXI MXP Stealth device was also hacked. 19 January 2010 15:52
AlexPaw wrote on 19 January 2010 13:54
> Look at this article in german:
>
> http://www.heise.de/security/artikel/USB-Stick-mit-Hardware-AES-Verschluesselung-geknackt-270086.html
>
> MXI MXP Stealth token with AES encryption was also hasked via its
> password access panel.
(Again, of course, I work for MXI.)
That's not quite what the article says. For folks who would rather
read English, see:
http://www.h-online.com/security/features/USB-stick-with-hardware-AES
-encryption-has-been-cracked-746215.html
Yes, in 2008, a weakness was found in MXI's password history feature.
As the very article you refer to states, MXI fixed the problem (a
software issue), and the fix was shown to the penetration originator
before release.
MXI notified all of its customers of the problem before the Heise
article came out.
As of March 2009, MXI's second-generation products had the
password-history feature itself moved into hardware, as part of the
Bluefly security processor. No other secure USB drive offers a
password history feature today, let alone one enforced in hardware.
- Posting
- Thread
- Reply
- New Topic
- Show Thread
- Threaded View
- Flat View
