SUMMARY
ScatterChat (http://www.scatterchat.com/) is an instant messaging project
that aims to provide encryption and anonymity support with Tor to
non-technical users such as human rights activists and political
dissidents.
Steven Murdoch, a security researcher with the University of Cambridge,
discovered a theoretical weakness in ScatterChat’s cryptographic module.
He found that an eavesdropper might locate patterns in a private
communications channel if extraordinarily large amounts of messages were
exchanged in a single conversation.
Note that this does not allow an eavesdropper to decrypt messages, nor
determine a user’s identity if anonymity is used.
The practical impact of this vulnerability is very low.
This will be cleared up in version 2.0 of Scatter Chat.
Tags: ScatterChat, Scatter Chat, Hacktivismo, cDc, Encryption
