Major SSD hardware encryption flaws discovered

[captain_to_fire]

2 hours ago, Speed Weed said:

Next will be IMac because IMac uses SSD as well. 

https://www.apple.com/mac/docs/Apple_T2_Security_Chip_Overview.pdf 

 

Apple’s encryption scheme is tied down to the file system and hardware. I’m sure someone will find bugs and exploits to the T2 chip. 

 

[Bananasplit_00]

Don't use encryption on my disks but this is still bad. Don't own a confirmed impacted disk tho at least. Only have Kingston and Intel SSDs atm

[williamcll]

I wonder if the crucial MX500 is affected.

[Sauron]

That moment when both of your main machines use affected drives oh well, I wasn't using hardware encryption anyway - and after this I think I never will. Software encryption is still fail safe at least.

[Thaldor]

10 hours ago, captain_to_fire said:

https://www.apple.com/mac/docs/Apple_T2_Security_Chip_Overview.pdf 

 

Apple’s encryption scheme is tied down to the file system and hardware. I’m sure someone will find bugs and exploits to the T2 chip.

Probably already has. Or at least people are looking into it.

 

It's kind of funny how people go batshit crazy over published vulnerabilities while they are only the tip of the iceberg. It's kind of scary to watch something like Def Con presentations, the glimpse to the world of hacking, and there's mostly white and grey hats, black hats are the scary part because they don't talk about what they know. Something like the SSH vulnerability has been there probably for years before someone found it and published it, story doesn't tell how many has found it in the past and kept it as their own knowledge.

[RejZoR]

14 hours ago, Ryan_Vickers said:

Is there a full list of the models affected?

Edit: found this in the source

So, 850 Pro isn't affected, but 850 Evo is? Interesting.

[asus killer]

i got a 840 EVO and an 850 EVO. Damn if only i was this on the bullseye while playing the loto 

[Sakkura]

21 minutes ago, RejZoR said:

So, 850 Pro isn't affected, but 850 Evo is? Interesting.

It isn't known whether the 850 Pro is affected. They were essentially reverse-engineering the drives because this is all proprietary, so it's a lot of work to check each drive.

[TVwazhere]

12 hours ago, rcmaehl said:

When @Sakkura beats you by 9 minutes on posting. Feels bad man.

What would your catchy title have been? I'm always curious

 

Nevermind I found it. 

Quote

Scandalous SSDs! Your NAME BRAND Encrypted SSDs are unlockable using " "

 

[DeafLemming]

In order to exploit this, do they need physical access to the machine?

 

[vanished]

34 minutes ago, LozzyTheLemming said:

In order to exploit this, do they need physical access to the machine?

 

I would imagine so.  Not to mention that that's the only situation in which you'd encounter (be blocked by) the hardware encryption in the first place.

[corsairian]

And like that I will never buy a Crucial SSD. That's inexcusable on their part,ike really?

 

Do they need physical access to the drive for this to happen? Or can it be remote?

[dfsdfgfkjsefoiqzemnd]

Guess I'm screwed if something happens then.  I'm using Bitlocker on a 960PRO and an 840EVO in my gaming rig. 

The NAS also has a bunch of encrypted 850PROs and MX200s, so I'll need to check if FreeNAS uses hardware or software encryption.  Hopefully it's the latter.  

 

EDIT: Yay, my NAS' encryption is software-based indeed.  So I only have my gaming rig to worry about. 

Time to look into my game library and decide if I'm still willing to deal with Windows and all it's BS.

[desertcomputer]

Thank god I was move to veracrypt for my storage drives a while back because I need drive to unblock-able on both window and linux OS.

[DildorTheDecent]

Another thing plaguing the 840 EVO.