Connect with us

Business

White Hat iOS Hacker Advises Apple In Its FBI Battle

Published

on

Will Strafach, a widely-known iOS hacker and mobile security expert, has some advice for Apple in its public dispute with the FBI after a judge ruled the company must help the FBI break into an iPhone that belonged to one of the San Bernardino shooters.

Strafach, now the CEO of Sudo Security Group, which specializes in enterprise mobile protection, thinks Apple is in a much more difficult position than many people realize. He goes as far as to say that the FBI has laid a trap for Apple in his article posted on BGR.

Strafach spent years hacking every iOS release to achieve full control and develop user-friendly jailbreaking tools used by people worldwide. He has reversed engineered iOS code base and has run security stress tests on different aspects of the iOS system, such as timing and viability of passcode cracking.

Strafach Offers His Advice

Following are Strafach’s five pieces of advice for Apple.

1) Many people have misinterpreted Apple’s public letter concerning the technique that could help break into the iPhone 5c. “The United States government has demanded that Apple take an unprecedented step which threatens the security of our customers,” the letter signed by company CEO Tim Cook says. “We oppose this order, which has implications far beyond the legal case at hand.” Strafach noted that the letter is referring to the issue of setting a precedent, not the technical issue.

Apple could comply with the order on a technical level by creating a RAM disk signed by the production certificate for the particular ECID of the suspect’s iPhone. Such a solution would permit Apple to use current technologies in the firmware file to provide access to the phone. Creating this disk would ensure there is no way the solution could work on another device.

Apple would show that breaking into an iPhone is doable and enable the FBI to use the case in the future as leverage. Giving the FBI this capability is the aspect that would impact the public.

Apple Will Set Precedent

If Apple assists in this, it sets a precedent for more technically difficult and unreasonable requests. The company will then have to explain why it cannot meet new requests. They will have to show why a new request differs from the last request.

2) Apple has encountered criticism about security issues in global markets it has been doing well in, such as China. If Apple does not fight the court order, it will lose standing with customers globally.

Blackberry was admired in the U.S. for taking a firm position on security, but it eventually succumbed when India demanded access to a user’s private data.

3) While the passcode attempt counter on the iPhone 5c can be done with little work, the FBI is asking to electronically make passcode attempts, which Strach sees as a “considerable issue.” To enable such attempts, Apple would have to adjust the SpringBoard source code powering the lock screen to add code and sign it with the production certificate so the device can run the code. Apple calls this is a “backdoor” since the order requests the company make an adjustment serving no purpose besides weakening iOS security. The modification weakens iOS security by enabling brute force attempts. If Apple complies, it again looks bad.

Why It’s Unreasonable

4) Not yet mentioned is the fact that the custom-signed RAM disk the FBI wants will not be possible to boot with the regular TSS restore servers that check firmware files being unloaded with each restore. To enable custom firmware to restore, the company would have to:

a) change the way the restore server works for this case, causing possible security issues of mistakes are made (something that could make the request unreasonable) or

b) bring the device onto its internal network and load the firmware with the restore server that is used internally. One can assume there is such an in-house server for restoring unreleased versions of firmware.

The company likely is not comfortable with what might occur on its internal network if it has to let in a phone belonging to a known terrorist. There is no way to know what might happen, considering that the FBI claims there is data it needs on the device.

Whether such arguments will convince a court is unknown, Strafach noted. The main point is that Apple has few technical arguments against having to comply with the order. The company’s objections can extend well beyond the moral positions it has publicly posted.

Also read:  Tim Cook: Building iPhone backdoor is ‘dangerous’; govt demand is ‘chilling’

The Public Relations Challenge

5) Apple has another public relations reason for opposing the order. It knows that if it complies, the FBI will be able to break the passcode quickly. Strafach, from his own testing, said a 4-digit passcode can be cracked in less than an hour and a 6-digit passcode in less than a day.

To a layperson, the company will not be able to argue against any claim that the company has decrypted the device for the FBI. Even though such a claim would not technically be true, it would only matter that Apple was taking actions to allow the FBI to gain access to once-encrypted data on an iPhone.

Important: Never invest (trade with) money you can't afford to comfortably lose. Always do your own research and due diligence before placing a trade. Read our Terms & Conditions here. Trade recommendations and analysis are written by our analysts which might have different opinions. Read my 6 Golden Steps to Financial Freedom here. Best regards, Jonas Borchgrevink.

Rate this post:

Important for improving the service. Please add a comment in the comment field below explaining what you rated and why you gave it that rate. Failed Trade Recommendations should not be rated as that is considered a failure either way.
0 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 5 (0 votes, average: 0.00 out of 5)
You need to be a registered member to rate this.
Loading...

3.9 stars on average, based on 8 rated postsLester Coleman is a veteran business journalist based in the United States. He has covered the payments industry for several years and is available for writing assignments.




Feedback or Requests?

1 Comment

1 Comment

  1. Real Anti-Racist Action

    February 19, 2016 at 7:38 pm

    Globalism has always been a bad idea. The Arab massacre of Americans is long over because none of their victims were armed, that is why more then three passed away.
    Their is no point for the FBI to do not, but to try and wither the few remaining freedoms away.
    The FBI is not with the people, they stand with the Zio-Rothschilds for now, and for ever more.
    http://antizionistleague.com/

You must be logged in to post a comment Login

Leave a Reply

Business

Overstock.com Shares Spike 17% After Chinese Private Equity Firm Pledges $270 Million for tZERO

Published

on

Shares of Overstock.com (OSTK) surged in after-hour trading Thursday after a major Chinese equity firm agreed to invest in tZERO, the blockchain subsidiary vying to reshape the investment world through a SEC-regulated alternative trading system (ATS).

GSR Capital to Invest Heavily in tZERO

CNBC confirmed on Thursday that Hong Kong-based GSR Capital will invest up to $270 million in tZero. The investment is based on a valuation of $1.5 billion, giving GSR an 18% stake in the new blockchain startup. GSR will also buy $30 million worth of tZERO security tokens.

“We are honored to have GSR Capital as a strategic investor,” said tZERO CEO Saum Noursalehi in a statement, as quoted by CNBC. “The tokenization of securities has the potential to disrupt global capital markets responsible for moving hundreds of trillions of dollars. Together with our partners, we will globalize our blockchain-based platform, bringing more efficiency, liquidity, and trust to capital markets.”

The announcement came less than six weeks after GSR Capital signed a letter of intent with Overstock to purchase $160 million worth of security tokens.

Launched in December, tZERO’s initial coin offering (ICO) has raised $134 million to finance its ATS infrastructure, which will provide a regulated venue for securities trading. The company plans to build similar systems around the world.

Despite a highly successful crowdraise, documents submitted to the SEC earlier this year revealed a target of $250 million. Independent valuations had placed tZERO’s ICO anywhere between $200 million and $500 million.

Overstock.com Spikes

Overstock.com’s share price was up by as much as 21% after-hours. It would eventually settle at $45.40 for a gain of 17.6%.

As the following chart illustrates, the OSTK price rose 4.5% in regular trading on Thursday to settle at $38.60.

Despite the gain, OSTK has been a dismal performer this year. Share prices are down 40% year-to-date, vastly under-performing the Nasdaq Composite Index, which has returned more than 14%.  What’s more, the stock is trading at less than half of its 52-week high.

Overstock’s share price has been rocked by disappointing quarterly results and the cancellation of a proposed public stock offering. Last March, the company offered four million shares of common stocks before abruptly cancelling those plans. Noursalehi said the decision to pull the offering was due to “market volatility and price.” To be sure, OSTK had declined 20% following the initial announcement to issue common stock.

Disclaimer: The author owns bitcoin, Ethereum and other cryptocurrencies. He holds investment positions in the coins, but does not engage in short-term or day-trading.

Featured image courtesy of Shutterstock.

Important: Never invest (trade with) money you can't afford to comfortably lose. Always do your own research and due diligence before placing a trade. Read our Terms & Conditions here. Trade recommendations and analysis are written by our analysts which might have different opinions. Read my 6 Golden Steps to Financial Freedom here. Best regards, Jonas Borchgrevink.

Rate this post:

Important for improving the service. Please add a comment in the comment field below explaining what you rated and why you gave it that rate. Failed Trade Recommendations should not be rated as that is considered a failure either way.
0 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 50 votes, average: 0.00 out of 5 (0 votes, average: 0.00 out of 5)
You need to be a registered member to rate this.
Loading...

4.6 stars on average, based on 547 rated postsSam Bourgi is Chief Editor to Hacked.com, where he specializes in cryptocurrency, economics and the broader financial markets. Sam has nearly eight years of progressive experience as an analyst, writer and financial market commentator where he has contributed to the world's foremost newscasts.




Feedback or Requests?

Continue Reading

Business

A Closer Look at Boerse Stuttgart’s New Cryptocurrency Platform

Published

on

The Boerse Stuttgart group has is expanding upon past product launches to create a complete holistic ecosystem for digital assets, including cryptocurrencies. This comes on the heel of them launching the “Bison” app, which allowed users to trade cryptocurrencies with zero fees, similar in functionality to that offered by Robinhood.

The difference between Bison and Robinhood, however, is that the Boerse Stuttgart group is the second largest derivatives exchange in Germany. Another unique feature of the Bison app was its “crypto radar” feature.

This functions as a social media tool that aggregates more than 250k tweets and analyzes them to determine the “mood” of cryptocurrency investors.

Having an existing (and profitable) large financial firm expanding their brand to cryptocurrencies in any capacity reflects a market that is increasingly accepting the reality of institutional capital flowing into crypto markets.

The new ecosystem is composed of three distinct pillars. Bison represents the first of these pillars. The second is a branded platform for initial coin offerings to sell tokens. The third is a safe custody solution for digital assets.

This ecosystem, in turn, falls within Boerse Stuttgart’s so called “digitization” strategy and should serve as a bellwether of changes to come in financial markets. After all, as an established market player, Boerse Stuttgart Group has extensive knowledge in the fields of technology, regulation, and trading models respectively.

According to their own CEO Alexander Höptner, “On this basis, we can offer central services along the value chain for digital assets, all under one roof. Investors and market participants know that Boerse Stuttgart Group stands for quality, transparency, and reliability. As a Germany-based provider, we want to transpose this standard into the digital world. We will help to promote acceptance of digital assets.”

The key to their ambitions focuses on solving two major problems. The first is that KYC procedures tend to be overly complex for average investors, as well as time-consuming. The Boerse Stuttgart group’s own KYC solution allows traders to pass KYC and start trading within minutes, as opposed to more typical solutions that take a few days.

The second issue they are tackling the liquidity and accessibility of ICO tokens post-sale. They solve this by allowing tokens launched through their platform to be traded within their broader ecosystem using Bison.

According again to the CEO, “At the trading venue tokens issued via our ICO platform can be traded on the secondary market. This is an important success factor for ICOs. At the same time, we are responding to demand from both retail and institutional investors for a regulated and reliable environment for trading with cryptocurrencies. Furthermore, established cryptocurrencies like Bitcoin or Ethereum will also be traded.”

This approach will likely serve to establish the Boerse Stuttgart group a prime recipient of crypto-intrigued institutional capital. After all, the early bird gets the worm. A key component of this future success also rests on how well they partner with authorities.

This exact point was also emphasized recently by the CEO, who said, “In designing the strategic projects we closely cooperate with all competent boards and committees, and especially with the supervisory authorities.”

While it remains to be seen whether retail investors make use of this ecosystem, it seems reasonable to assume that larger investors will flock to a simple crypto-specific ecosystem backed by an old guard stalwart of finance.

Featured image courtesy of Shutterstock.

Important: Never invest (trade with) money you can't afford to comfortably lose. Always do your own research and due diligence before placing a trade. Read our Terms & Conditions here. Trade recommendations and analysis are written by our analysts which might have different opinions. Read my 6 Golden Steps to Financial Freedom here. Best regards, Jonas Borchgrevink.

Rate this post:

Important for improving the service. Please add a comment in the comment field below explaining what you rated and why you gave it that rate. Failed Trade Recommendations should not be rated as that is considered a failure either way.
1 vote, average: 5.00 out of 51 vote, average: 5.00 out of 51 vote, average: 5.00 out of 51 vote, average: 5.00 out of 51 vote, average: 5.00 out of 5 (1 votes, average: 5.00 out of 5)
You need to be a registered member to rate this.
Loading...

4.8 stars on average, based on 15 rated posts




Feedback or Requests?

Continue Reading

Altcoins

MasterCard Could Be Your Best Friend

Published

on

Since just after the financial crisis, I have been searching for a way to beat MasterCard and Visa at their own game. These two brands dominate the business of processing debit and credit card transactions.  I have always considered this duopoly as the enemy of mankind, but could turn out to be a hasty judgement.

MasterCard and Visa don’t actually process transactions as much as they offer an electronic network and charge fees for the use of their name.  They collect about 0.11% per card swipe which ain’t much until you consider they are running more than 150,000 transactions per minute through their network.  Pretty nice business to be in. All together, the two will generate about $30 billion this year.

The problem with both of these guys is that it is impossible to get around them.  If you buy something anywhere in the world with a debit or credit card, it is almost guaranteed to run on either the Visa or MasterCard network.  In which case, in addition to the 0.11% taken out for the network, the store that accepts your purchase pays anywhere from 3% to often as much as 5% in total for processing fees.  And if you travel abroad and charge something, well forget about it. Everywhere along the network are intermediaries taking their nick of your wallet.

When foreign currency transaction fees are taken into account, that is where more intermediaries are included.  That is where the costs add much higher and that is often where the consumer is hurt most.

Fighting Back

The whole idea behind blockchain technology is to make transactions of all types fast with little or no dependency on intermediaries.  All this makes MasterCard and Visa the enemy of cryptocurrency developers. But neither of these brands are sitting still applying for patents on blockchain based payments methods.

The natural reaction is to sell to sell your crypto and find some easier way to earn a decent return.  We disagree: we think there is crypto to be made from MasterCards strategy. Here is why you should be encouraged.

ome time back, MasterCard applied for a patent on blockchain technology that created a link between crypto and fiat currencies. MasterCard is not alone, as there are any number of crypto projects with the same idea.  Recently we looked at TenX and there are others.

Using TenX for comparison, MasterCard’s recently awarded patent offers to convert crypto to fiat using the existing MasterCard network.  TenX and many others plan either create their own high speed mainnet or use the Ethereum platform.

In head to head competition, this gives MasterCard a sizable advantage since MC is pretty much accepted by merchants everywhere.  As much as I hate the duopoly represented my MC and Visa, right now they could turn out to be the best thing to happen for one simple reason.  They will unquestionable accelerate mass acceptance of crypto.

Their existing network and transaction speed, immediately solves the lingering Bitcoin/Ethereum issue of scalability.  In addition as observers have pointed out, both MC and Visa have had systems in place to identify fraudulent transactions.

Having said all of this, is MasterCard going to kill all other crypto payment wanabys like TenX and others? Before concluding the answer is yes, consider this.  In their recently released quarterly review to shareholders, MasterCard reported net income of $2.33 billion on revenue of $5.24 billion. That is a whopping profit margin of 44.5%!  This towers over extraordinarily profitable companies like Apple at 20.3% or the average US corporation at less than 10%.

When MasterCard’s blockchain system goes into use, it will plump up those already MC margins. So, as a crypto investor, you have to ask yourself, do you actually think that MC will pass on those savings or wallow in the cost savings?  The answer is pretty obvious.

MasterCard Could Be The Best News

Crypto naysayers are the first to deny that Bitcoin and others are a legitimate medium of exchange.  This is based largely on the limited number of mainstream merchants that are in the crypto loop. MasterCard could help take crypto mainstream and that would be a good thing for major names like Bitcoin, Bitcoin Cash and Ether.  And with the payments processing business dealing in over $50 trillion in transactions annually, there will be room for startups offering high speed scalability at lower cost. It will not happen this year but it will happen.

Featured image courtesy of Shutterstock.

Important: Never invest (trade with) money you can't afford to comfortably lose. Always do your own research and due diligence before placing a trade. Read our Terms & Conditions here. Trade recommendations and analysis are written by our analysts which might have different opinions. Read my 6 Golden Steps to Financial Freedom here. Best regards, Jonas Borchgrevink.

Rate this post:

Important for improving the service. Please add a comment in the comment field below explaining what you rated and why you gave it that rate. Failed Trade Recommendations should not be rated as that is considered a failure either way.
1 vote, average: 1.00 out of 51 vote, average: 1.00 out of 51 vote, average: 1.00 out of 51 vote, average: 1.00 out of 51 vote, average: 1.00 out of 5 (1 votes, average: 1.00 out of 5)
You need to be a registered member to rate this.
Loading...

4.4 stars on average, based on 96 rated postsJames Waggoner is a veteran Wall Street analyst and hedge fund manager who has spent the past few years researching the fintech possibilities of cryptocurrencies. He has a special passion for writing about the future of crypto.




Feedback or Requests?

Continue Reading

5 of 15 Seats Available

Learn more here.

Recent Comments

Recent Posts

A part of CCN

Hacked.com is Neutral and Unbiased

Hacked.com and its team members have pledged to reject any form of advertisement or sponsorships from 3rd parties. We will always be neutral and we strive towards a fully unbiased view on all topics. Whenever an author has a conflicting interest, that should be clearly stated in the post itself with a disclaimer. If you suspect that one of our team members are biased, please notify me immediately at jonas.borchgrevink(at)hacked.com.

Trending