Alex 

Having seen @qā€™s talk on reverse engineering the crypto on these Iridium trackers I thought Iā€™d have a quick look at the hardware.

The JTAG is unlocked so it was trivial to dump the flash with a Segger.

The crypto password is stored in plain on the device.

Jun 25 at 9:20amWeb
Show threadBlue šŸ’™Jun 25
@alexlomas @q aha! You also managed to get one and reverse engineer it
Show threadAlex Jun 25
@blue @q There was a seller on eBay and I made a ridiculously low offer and now I have one. It needs a new battery if I were to actually use it.
Show threadNeil CraigJun 25
@alexlomas @q > The crypto password is stored in plain on the device.
JFC. How did this get past the first inspection?