Technical Breakdown
The zzz 1.1 leaks are a result of a flaw in the cryptographic algorithm used to secure the communication between the device and the cloud server. The algorithm, known as AES-128, is a widely-used encryption standard that has been proven to be very secure in the past. However, recent research has shown that a new type of attack, known as a side-channel attack, can be used to break AES-128 encryption. This type of attack exploits the fact that cryptographic algorithms can leak information about the secret key used to encrypt the data. In the case of the zzz 1.1, the side-channel attack can be used to extract the secret key from the device, which can then be used to decrypt the communication between the device and the cloud server.
