Search This Blog

Genisis Secure USB Drive - Security Bugs

Cyber Security and Privacy Foundation (CSPF) has recommended people not to Genisis securedrive - so-called encrypted UBS device which is supposed to be used for storing sensitive data
Cyber Security and Privacy Foundation (CSPF) has recommended people not to Genisis securedrive -  so-called encrypted UBS device which is supposed to be used for storing sensitive data, after it tested the product.

According to the CSPF, when it tested the drive, it found out some flaws which are listed below:

• Anyone can decrypt all files without the PIN and password.
• The encryption is AES and the key is inside the database on the USB (one partition).
• The software code never uses the hardware encryption, it’s only to showcase.
• Anyone could change the pin/password without hardware encryption chip.
• The software code has so many security bugs that allows attackers to hack the drive easily.

The full report can be found here:
http://securityresearch.cysecurity.org/?p=573
Share it: