Hey guys, on the boxcryptor info site on "App Protection" there is a note that says:
Note: If an attacker gains access to your operating system, it is theoretically possible for him to modify the locally stored Boxcryptor settings in such a way that the protection feature can be circumvented. While this feature can help you better protect your encrypted data on your computer, it does not guarantee 100% security against sophisticated attackers with access to your operating system. We recommend to follow local device security best practices, to avoid such a situation.
Now, I just want to understand why/how an attacker can do this when he gains access to the operating system. Doesn't he still need my password to decrypt my private key to decrypt the data? (Sorry for such a beginners question)
Oh and of course I am not asking you for a detailed instruction on how one can do this 😃, I just want to know what I generally misunderstand with my simple logic from above. Why does the attacker not need the password to decrypt my data?
Thanks a lot!