Jhou said in his statement that Secuyum would fix the weaknesses found in the future model of the pro -proluistic lock. “Customer security is our priority and we have started the process of making the next generation products to thwart these potential attacks,” they write. “We expect new locks on the market by the end of the year.”
Photograph: Ronda Churchill
In a follow -up call, Jeremy Brook, the secreram director of sales, confirmed that the Secreity has no plans to fix the vulnerability in the locks already in the use of customers, but it suggests that the safe owners who are worried they buy a new lock and change one on their chest. “We are not offering a firmware package that upgrades it,” Brooks. “We are going to give them a new product.”
Brooks say that they believe that Omo and Rovle are “singing out” with the intention of “maligning” the company.
Omo replied that it was not with his intention. “We are trying to make the public aware of the weaknesses in one of the most popular safe locks in the market,” they say.
A senator warning
According to the research by Omo and Roli, beyond Liberty Safe, Secourum Provisional locks are used by various types of safe manufacturers including various types of manufacturers including Fort Knoc, High Noble, Firing, Tracker, Prostel, Rhino Metals, Sun Welding, Corporate Said Specialists, and Pharmacy Saf Companies, and Pharmacy Saf Companies and Narcsaf. Locks can also be found on the chests used by CVS for storage of drugs and by several American restaurant chains for storage of cash.
Rowley and Omo Securam are not the first to increase concerns about the safety of the locks. In March last year, American senator Ron Wayden wrote Open letter For Michael Casey, KC, director of the then National Counteivalence and Security Center, urges KC to clarify American businesses that have a manufacturer reset capacity, which is owned by the safe locks created by Securam, which is owned by a Chinese -origin company. The capacity, Wayden wrote, can be used as a back door – a risk that was already safe for the US government, used as all other locks with a manufacturer reset, even they are widely used by private American companies.
In response to learning about the research of Rowley and Omo, Wayden wrote to Wired in a statement that the findings of the researchers represent the risk of a back door – whether in tight or encryption software – that he tried to pay attention.
“Experts have warned over the years that backdors will be exploited by our opponents, yet instead of acting on my warnings and security experts, the government has left the American public weak,” Widen writes. “This is why Congress should reject calls for new backdoor in encryption technology and should fight all efforts by other governments, Like UKTo force American companies to weaken their encryption to facilitate government monitoring. ,
Rejuvenation
The research of rovley and Omo began with the same concern that a largely unknown unlocking method in safe could represent a comprehensive safety risk. They were initially searching for the mechanism behind the Liberty Safe Backdoor, which caused a backlash against the company in 2023, and found a relatively straightforward reply: Liberty Safe holds a reset code for every safe and in some cases, it is available for American law.
Liberty is since safe It is written on its website It will now require a submission, a court order, or other compulsory legal procedure to hand over that master code, and will also remove its copy of the code at the request of a safe owner.
Rowley and Omo planned to reveal the existence of Securam’s weaknesses more than a year ago, but the company has stopped due to legal threats.Photograph: Ronda Churchill
Rowley and Omo did not find any safety faults that would allow them to misuse that special law-enforcement back door. When he began an investigation into the Secourum Provisional Lock, however, his research on his research on the two types of seconds of the secic lock used on Liberty safe products revealed some more complicated. The locks in their manual have documentation of a reset method, the aim in the principle to help the owners safe for use by locksmith who have forgotten their unlock code.
Enter a “recovery code” in the lock for “999999” by default – and it uses that value, another number stored in the lock called the encryption code, and a third, random variable to calculate a code displayed on the screen. An authorized locksmith can then read a Securam representative on the phone that uses the value and a secret algorithm to calculate the reset code, Locksmith can enter the keypad to set a new unlock combination.
