« Senforce integrates encryption into NAC | Main | Shameless Self-Promotion »

June 25, 2007

Quicken backdoor outed...

A Russian firm, ElcomSoft, is now selling a password recovery tool that helps you gain access to Quicken, Quicken Lawyer, and QuickBooks for only $99 for a commercial license.

ElcomSoft gained access to files encrypted by Quicken's software by discovering a backdoor that Quicken had placed in their software for password recovery scenarios.

ElcomSoft discovered that Quicken had implemented a 512-bit RSA key. After factorizing the key, ElcomSoft promptly moved forward with a solution that can instantly remove the passwords protecting Quicken files.

The result is, if placed in the wrong hands, this product could potentially open a number of customers to the exposure of very sensitive data to competitors and the public, alike.

Quicken has responded that they take this threat seriously and are working on resolving the issue.

Until they have provided a work around for the backdoor, make sure you keep a tight hold on any Quicken documents.

Michael Mongold

Posted at 10:45 AM |

TrackBack

TrackBack URL for this entry:
http://www.typepad.com/t/trackback/2324844/19578204

Listed below are links to weblogs that reference Quicken backdoor outed...:

Comments

Post a comment

If you have a TypeKey or TypePad account, please Sign In

My Photo
Subscribe to this blog's feed
Add me to your TypePad People list

June 2007

Sun Mon Tue Wed Thu Fri Sat
          1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30

Recent Posts

Have a look at...

Headlines from the Security Roundtable

  • Headlines from the Information Security Blogosphere
    Add your feed to this box

    Security Catalyst

    ©Viralinks

Categories

Archives

Blog powered by TypePad

About