Tal Be'eryRevealing the Inner Structure of AWS Session TokensTL;DR: A world first reverse engineering analysis of AWS Session Tokens. Prior to our research these tokens were a complete black box…Jul 251Jul 251
Tal Be'eryHi Meta, WhatsApp with Integrity?TL;DR: Meta’s WhatsApp suffers from an integrity issue that allows attackers to create an inconsistent world view on victims’ multi-device…May 21May 21
Tal Be'eryinZengo WalletBad Randomness: Protecting Against Cryptography’s Perfect CrimeTL;DR: Black Hat Asia invited Zengo’s research team to present research on a critical but often overlooked vulnerability in cryptography…May 8May 8
Tal Be'eryThe Ambassador protocol: Multi-device E2EE with PrivacyTL;DR: In this blog we present the ambassador protocol, our new cryptographic solution to enable End-to-End Encryption (E2EE) in the…Mar 3Mar 3
Tal Be'eryUnnecessary Evil: Multi-Device Instant Messaging can be privateTL;DR: Contrary to Meta’s WhatsApp claims, it is possible to have an Instant Messaging service with End-to-End Encryption (E2EE) in the…Jan 21Jan 21
Tal Be'eryHi Meta, WhatsApp with privacy?TL;DR: Meta’s WhatsApp suffers from a privacy issue that leaks victim devices’ setup information (mobile device + up to 4 linked devices)…Jan 173Jan 173
Tal Be'eryinZengo WalletBitcoin is a Dark Forest (too)TL;DR: Zengo researchers shed light on malicious bots monitoring the Bitcoin blockchain for bad randomness addresses, exploiting them…Dec 5, 20233Dec 5, 20233
Tal Be'eryinZengo WalletDo you know how keys are made?TL;DR: While problems with key generation have caused millions of crypto users to lose funds, Zengo wallet’s MPC technology solves the…Nov 29, 2023Nov 29, 2023
Tal Be'eryA short note on AWS KEY IDAs I was playing with AWS authentication and authorization system, I had realized that most of its inner working and data structures are…Oct 24, 20234Oct 24, 20234
Tal Be'eryinZengo WalletVires in Numeris: Why adding more parties boosts securityWho can you really trust? This is the critical question to be asked. This question applies to most fields of life and especially to crypto…Jun 24, 2023Jun 24, 2023