Severe Flaws in E2EE Cloud Storage Platforms Discovered
by Justin Erickson
Researchers have discovered significant cryptographic flaws in multiple end-to-end encrypted (E2EE) cloud storage platforms, including Sync, pCloud, Icedrive, Seafile, and Tresorit. These vulnerabilities could allow attackers to tamper with files, inject malicious data, or access plaintext files. Notably, several attacks are facilitated by unauthenticated keys and weak encryption protocols. While some providers have addressed or are working on fixes, Icedrive has not yet responded to the issues. Users should stay informed as platforms roll out updates.
Third-Party references:
Click the links below to learn more details. (Opens in a new tab/window.)