Technology

57435 readers

4177 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS

[email protected]

216

A group of R1 jailbreakers found a massive security flaw in Rabbit’s code (www.theverge.com)

submitted 1 month ago by [email protected] to c/[email protected]

17 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 63 points 1 month ago (1 children)

Many years ago, folks figured out how to crack firmware and find embedded keys. Since then, there have been many technological advances, like secure enclaves, private/public key workflows, attestation systems, etc. to avoid this exact thing.

Hopefully, the Rabbit folks spec'd a hardware TPM or secure-enclave as part of their design, otherwise no amount of firmware updating or key rotation will help.

There's a well-established industry of Android crackers and this sort of beating will keep happening until morale improves.

[–] [email protected] 9 points 1 month ago

Hahaha, that hardware is built to be as cheap as possible so they can make money on this scam of a product. I doubt the people making it even know what a TPM is from everything else we've seen.