Charges Against Treasury Employee Show Weakness of Encrypted Apps

Charges Against Treasury Employee Show Weakness of Encrypted Apps

Encryption apps are only as secure as you make them.

  • By Sydny Shepard
  • Oct 22, 2018

Last week, the government unveils criminal charges against a Treasury Department employee accused of leaking confidential banking reports involving key figures in the special counsel's prove of Russian electron interference. The findings are a reminder that encrypted apps used by millions around the world may provide a false sense of security for people who do not use them correctly or take other security precautions.

Prosecutors say Natalie Mayflower Sours Edwards, a senior official at the department's financial crimes unit, sent photos of the documents through an encrypted app to a reporter, who used them as the basis for a dozen stories related to the probe, according to the Washington Post. 

Normally, it would have been extremely difficult for investigators to have intercepted the messages because of the high level of security encrypted messaging apps provide, but prosecutors say they found hundreds of the messages Edwards stored on her cellphone when they searched the device last week.

The messages are said to have included communications in which Edwards "transmitted or described" the banking documents to the reporter.

The case is a high-profile reminder that users need to take extra steps — beyond just downloading an app — to receive the full benefits of an encrypted service. In other words, if you are backing up your decrypted messages onto your device, you are no longer protected by the app.

The potential false sense of security is an especially important warning sign for reporters and their sources, who have turned increasingly to encrypted apps for confidential communication. 

Cybersecurity reported Kim Zetter tweeted, "This should be an instruction for both reporters and their sources — encrypted messages are UNENCRYPTED on receiving/sending devices. If authorities obtain the device, the encryption is no good."

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • Maximizing Your Security Budget This Year

    Perimeter Security Standards for Multi-Site Businesses

    When you run or own a business that has multiple locations, it is important to set clear perimeter security standards. By doing this, it allows you to assess and mitigate any potential threats or risks at each site or location efficiently and effectively. Read Now

  • ISC West 2024 is a Rousing Success

    The 2024 ISC West security tradeshow marked a pivotal moment in the industry, showcasing cutting-edge technology and innovative solutions to address evolving security challenges. Exhibitors left the event with a profound sense of satisfaction, as they witnessed a high level of engagement from attendees and forged valuable connections with potential clients and partners. Read Now

    • Industry Events
    • ISC West

  • Live From ISC West: Day 2

    What a great show ISC West 2024 has been so far. The second day on Thursday was as busy or even more hectic than the first. Remember to keep tabs on our Live From ISC West page for news and updates from the show floor at the Sands Expo, because there’s more news coming out than anyone could be expected to keep track of. Read Now

    • Industry Events
    • ISC West

  • A Unique Perspective on ISC West 2024

    Navigating a tradeshow post-knee surgery can be quite the endeavor, but utilizing an electric scooter adds an interesting twist to the experience. While it may initially feel like a limitation, it actually provides a unique perspective on traversing through the bustling crowds and expansive exhibition halls. Read Now

    • Industry Events
    • ISC West
Most   Popular

Featured Cybersecurity

Webinars

New Products

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3

  • ResponderLink

    ResponderLink

    Shooter Detection Systems (SDS), an Alarm.com company and a global leader in gunshot detection solutions, has introduced ResponderLink, a groundbreaking new 911 notification service for gunshot events. ResponderLink completes the circle from detection to 911 notification to first responder awareness, giving law enforcement enhanced situational intelligence they urgently need to save lives. Integrating SDS’s proven gunshot detection system with Noonlight’s SendPolice platform, ResponderLink is the first solution to automatically deliver real-time gunshot detection data to 911 call centers and first responders. When shots are detected, the 911 dispatching center, also known as the Public Safety Answering Point or PSAP, is contacted based on the gunfire location, enabling faster initiation of life-saving emergency protocols. 3

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings. 3