Berlin blames leak on officer logging in via insecure Singapore hotel line

dredmorbius · 2024-03-05T14:30:54.000000Z

What's the nature of WebEx's encryption which renders it impotent to channel-based attacks here? The article is parlously light on technical details.

Some light DDG'ing doesn't turn up any more substantive cryptographic discussion.

shp0ngle · 2024-03-05T16:55:56.000000Z

I think they allow people to join by just calling by phone.

The phone was tapped.

dredmorbius · 2024-03-05T20:38:15.000000Z

Ah, I was thinking that the WiFi or dialup connection (data, not voice) had been compromised.

Dialing in from an unsecured phone would be quite poor opsec. And tapping that phone quite a coup for the Russians.

shp0ngle · 2024-03-05T12:47:49.000000Z

This is a political article (so it will probably get flagged, removed and downvoted) but, it relates to security and encryption, so I submitted it anyway

from the article:

> WebEx, a communications program from U.S.-based Cisco Systems, provides end-to-end encryption which allows for secure communications. However, if a participant dials in via a landline rather than using the app — as apparently happened in the case of the officer in Singapore — then the encryption is not guaranteed.

dredmorbius · 2024-03-05T14:22:56.000000Z

<https://news.ycombinator.com/item?id=9562917>

<https://news.ycombinator.com/item?id=8339325>

If you want to discuss the merits of an article, discuss its merits rather than anticipating attacks.

(IMO this submission is valid.)

shp0ngle · 2024-03-05T16:53:53.000000Z

okay, next time, cannot edit anymore