Hackers followed the back in the safe safe-and can now open them in seconds

0


Zhou said in a statement that Securam is eliminating the vulnerabilities of OMO and Rowley, found in future Prologic lock models. “Customer security is our priority, and we have begun the process of creating the next -generation products to thwart these possible attacks,” he writes. “We expect new locks in the market by the end of the year.”

Hackers were looking for a back in the Highsecoup's safe - and can now open them in seconds

Photo: Ronda Churchill

In a follow -up call, Jeremy Brooks Sales Manager confirmed that Securam has no plans to fix the vulnerabilities of the locks in the customer’s safe, but offers safe owners who are worried about buying new locks and replacing one in their safe boxes. “We don’t intend to provide an operating system package that upgrades,” says Brooks. “We’re going to offer them a new product.”

Brooks adds that he believes that Omo and Rolle “separate” Securam with the aim of “discrediting” the company.

Omo responds that they are not intended at all. “We are trying to inform people of the vulnerability in one of the most popular safe locks in the market,” he said.

A warning of a senator

Beyond Liberty Safe, Prologic Securam locks are used by a wide range of safe manufacturers including Fort Knox, High Nobile, FreeKing, Tracker, ProSteel, Metals Rhino, Welding Sun, Safe Companies and Safe Pharmaceuticals Cennox and Narcsafe. The locks can be found in safes used by CVS to store drugs and by several American restaurant chains for cash storage.

Relle and Omo are not the first to worry about the security of Securam locks. In March last year, Senator Weden, Ron Widen, wrote a free letter to Michael Kissi, then the director of the National Center for Monopoly and Security, and asked someone to turn on American jobs that securely built by Securam, owned by a Chinese parent company. WYDEN wrote that this capability could be used as a rear – a risk that previously led to Securam locks for US government use as other locks by resetting manufacturer, even if it is widely used by private US companies.

In response to learning about Rolle and Omo’s research, Viden wrote in a statement to show WID that the findings of the researchers are precisely the risk of back -to -back – both in the safe and in the encryption software – that he tries to attract attention.

“Experts have been warning our supporters for many years, but instead of dealing with me and security experts, the government has made the American people vulnerable,” Widden writes. “This is precisely why Congress should call for new encryption technology support and fight with all other governments’ efforts, such as Britain, to force US companies to weaken their encryption to facilitate government oversight.”

Moderator

Rolle and Omo’s research began with the same concern that a mainly unknown unlock in the safe may be a wider security risk. They first went to search the Liberty Safe Backdoor back mechanism, which in 2023 caused a strong response against the company and found a relatively simple answer: Liberty Safe holds a reset code for any security and in some cases makes it available to US law enforcement.

Liberty Safe has written on his website since then that he needs to be summoned, court order or other compulsory legal procedures to deliver that master code, as well as copying his code at the request of a safe owner.

Image may contain Mohamed El Shorbagy Purple Face Face Person Person Prichography Accessories Accessories Accessory Accessory Accessory

Relle and Omo were planning to reveal the existence of Securam vulnerabilities more than a year ago, but have been lost because of the company’s legal threats.Photo: Ronda Churchill

Relle and Omo did not find any security defects that allow them to abuse that particular backing for law enforcement. However, when they began to check the Prologic Securam lock, their research on the higher version of the two types of Securam Lock used in Safe Freedom products was more interesting. The locks have a reset method in their manual, which is intended in theory to be used by locks that help safe owners forget their lock code.

Enter a “recovery code” – by default, “999999” and use that value, another number stored in the lock called encrypted code, and a third random variable to calculate the code displayed on the screen. A permissible locking maker can then read that code to a Securam representative by phone, then uses that value and a secret algorithm to calculate a reset code that the locking can enter into the keyboard to adjust a new lock combination.

About The Author

Leave a Reply

Your email address will not be published. Required fields are marked *