User encrypted with Truecrypt. Password does not work

User encrypted some credit card info. I saw her type the password. I typed the confirmation password. When trying to unencrypt, says wrong password? Whaaa??

The old keyboard was defective as we found out. Caps lock was flaky. We tried the password about twenty times. Is there a way to crack Truecrypt? We have the credit card info, that is ok. Just wondering. We did not have the bitlocker option.
Thanks
LVL 2
dronethoughtAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Neil RussellTechnical Development LeadCommented:
In a word? NO.
There would be no point to TrueCrypt if it was as simple as going online to a forum and asking "Hey, how do I crack TrueCrypt?"

There are of course some "Brute force" "Dictionary" cracking programs for TrueCrypt that will attempt to crack TrueCrypt encrypted disk partitions but that is on the assumption of you having used a simple dictionary password and not a long, strong encryption key.

Besides that, the rules of EE would not allow the discussion of the technicalities of cracking an encryption program.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
cwstad2Commented:
Unfortunatley its not as simple as you may think. However you can type into google cracking truecrypt and you will have a host of websites and videos that may help you. good luck
0
RizzleCommented:
This question defeats the object of the encryption in the first place. Bear in mind Truecrypt was deemed insecure by the developers of the software hence why it was shutdown. No doubt someone has cracked the encryption by now but as stated this cannot be discussed here.
0
Cloud Class® Course: Microsoft Azure 2017

Azure has a changed a lot since it was originally introduce by adding new services and features. Do you know everything you need to about Azure? This course will teach you about the Azure App Service, monitoring and application insights, DevOps, and Team Services.

Neil RussellTechnical Development LeadCommented:
@Roshan Ejaz
" Bear in mind Truecrypt was deemed insecure by the developers of the software hence why it was shutdown"

An often misguided statement.  The actual statement from the development team was this...

"WARNING: Using TrueCrypt is not secure as it may contain unfixed security issues"

That is to say, this product is not being developed anymore and there MAY be security issues that arise in the future that we/nobody is currently aware of.  It does NOT say "We have proved it is insecure and are therefore closing down TrueCrypt.

For further information on this and a good read on the possible resurrection of TrueCrypt pay a visit to www.esecurityplanet.com and read the September 2014 article on there.
0
RizzleCommented:
So the part where it says "may contain unfixed security issues" doesnt mean it isnt insecure? Of course it mean its insecure hence why they put that!

They closed it down due to being insecure and they also found bitlocker as a better/more secure alternative.

Read this.....
http://krebsonsecurity.com/2014/05/true-goodbye-using-truecrypt-is-not-secure/
0
Neil RussellTechnical Development LeadCommented:
Firstly, understand that there is no such thing as "Secure".  The article you quote is some 3 or 4 months older in time and things change pace quickly in the world of computing as I am sure you know.  It is widely agreed in the security world that no major security holes have to date been discovered/disclosed in TrueCrypt.  The code analysis showed up a few minor to medium "Issues" in the codes strength but when you consider that this include the fact that "The code is not strongly documented" then I am sure that most people using that to protect there private details would not panic and think it "Insecure"

As to bitlocker being secure.....
You can see that this is not exactly true. In the world of computer forensics, nothing is really secure.

Often the most insecure thing in IT Security is physical access. Get that right and you have solved 95% of the problem.  The next 4% is down to users getting wrong information and being led to believe that "Secure" means SECURE!
0
dronethoughtAuthor Commented:
Thank you all!!!
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
System Utilities

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.