The world was informed of a flaw in nearly every computing platform a couple of weeks ago. The FREAK flaw is an OpenSSL vulnerability that allows man in the middle attacks on devices that could be tricked to use lower forms of encryption. Nearly every copy of Windows, Mac OS, BlackBerry, Android, iOS, etc., was affected. Apple rolled out fixes this past week while modern browsers like Chrome were updated as well. BlackBerry still does not have a fix and most every BlackBerry out there is vulnerable.
The company issued a warning to its customers and said they are looking into what can be done.
It is interesting that BlackBerry is taking so long to patch their software. It has been almost 2 weeks since we learned of FREAK and who knows how long hackers knew about it. The attack is not easy to pull off so perhaps they feel like they have some breathing room. The company says they are working on it.
Stay tuned.
The company issued a warning to its customers and said they are looking into what can be done.
BlackBerry is currently investigating the customer impact of the recently announced OpenSSL FREAK vulnerability. A list of known affected and unaffected products is supplied in this notice, and may be updated as we complete our investigation.
It is interesting that BlackBerry is taking so long to patch their software. It has been almost 2 weeks since we learned of FREAK and who knows how long hackers knew about it. The attack is not easy to pull off so perhaps they feel like they have some breathing room. The company says they are working on it.
Further investigation into affected products is ongoing, and BlackBerry is working to determine the full impact of the issue and confirm the best approach for protecting customers. As fixes become available, this notice will be updated.
Stay tuned.