Charges Against Treasury Employee Show Weakness of Encrypted Apps

Charges Against Treasury Employee Show Weakness of Encrypted Apps

Encryption apps are only as secure as you make them.

  • By Sydny Shepard
  • Oct 22, 2018

Last week, the government unveils criminal charges against a Treasury Department employee accused of leaking confidential banking reports involving key figures in the special counsel's prove of Russian electron interference. The findings are a reminder that encrypted apps used by millions around the world may provide a false sense of security for people who do not use them correctly or take other security precautions.

Prosecutors say Natalie Mayflower Sours Edwards, a senior official at the department's financial crimes unit, sent photos of the documents through an encrypted app to a reporter, who used them as the basis for a dozen stories related to the probe, according to the Washington Post. 

Normally, it would have been extremely difficult for investigators to have intercepted the messages because of the high level of security encrypted messaging apps provide, but prosecutors say they found hundreds of the messages Edwards stored on her cellphone when they searched the device last week.

The messages are said to have included communications in which Edwards "transmitted or described" the banking documents to the reporter.

The case is a high-profile reminder that users need to take extra steps — beyond just downloading an app — to receive the full benefits of an encrypted service. In other words, if you are backing up your decrypted messages onto your device, you are no longer protected by the app.

The potential false sense of security is an especially important warning sign for reporters and their sources, who have turned increasingly to encrypted apps for confidential communication. 

Cybersecurity reported Kim Zetter tweeted, "This should be an instruction for both reporters and their sources — encrypted messages are UNENCRYPTED on receiving/sending devices. If authorities obtain the device, the encryption is no good."

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • Maximizing Your Security Budget This Year

    7 Ways You Can Secure a High-Traffic Commercial Security Gate  

    Your commercial security gate is one of your most powerful tools to keep thieves off your property. Without a security gate, your commercial perimeter security plan is all for nothing. Read Now

  • How a Security System Can Enhance Arena Safety and the Fan Experience

    Ensuring guests have both a memorable experience and a safe one is no small feat for your physical security team. Stadiums, ballparks, arenas, and other large event venues are increasingly leveraging new technologies to transform the fan experience and maintain a high level of security. The goal is to preserve the integrity and excitement of the event while enhancing security and remaining “behind the scenes.” Read Now

  • Protecting Data is Critical

    To say that the Internet of Things (IoT) has become a part of everyday life would be a dramatic understatement. At this point, you would be hard-pressed to find an electronic device that is not connected to the internet. Read Now

  • Mobile Access Adoption

    Smartphones and other mobile devices have had a profound impact on how the world securely accesses the workplace and its services. The growing adoption of mobile wallets and the new generation of users is compounding this effect. Read Now

Most   Popular

Featured Cybersecurity

Webinars

New Products

  • Hanwha QNO-7012R

    Hanwha QNO-7012R

    The Q Series cameras are equipped with an Open Platform chipset for easy and seamless integration with third-party systems and solutions, and analog video output (CVBS) support for easy camera positioning during installation. A suite of on-board intelligent video analytics covers tampering, directional/virtual line detection, defocus detection, enter/exit, and motion detection. 3

  • FEP GameChanger

    FEP GameChanger

    Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction. 3

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3