Case Study: SGP Technologies achieves a comprehensive mobile security assessment and uncovers BBM vulnerabilities with NowSecure

SGP Technologies Uses viaLab to Complete Security Assessment

SGP Technologies, maker of the Blackphone, used NowSecure’s viaLab to investigate rival BlackBerry’s BBM service and answer three core questions: does BBM encrypt data in transit, does it encrypt data at rest, and does it protect sensitive information. The challenge was to perform a thorough, repeatable assessment that would reveal whether messages, local storage, and contact data were properly secured.

Using viaLab’s forensic analysis and automated penetration-testing features (MITM, SSL Proxy, SSL Strip), SGP found that BBM did not require a pre-entry password (undermining transit encryption), stored text messages in an unencrypted SQLite database, and pulled and stored BlackBerry PINs from the address book—introducing potential tracking risks. The tests contrasted BBM with SGP’s Silent Text, produced detailed evidence and reports, and demonstrated viaLab’s ability to identify and document mobile app security weaknesses.