Batman v Superman: Dawn of Justice is a lengthy film, running just over two and a half hours. Though the film certainly has a ton of action-packed scenes for moviegoers to digest, not all of the scenes Zack Snyder and company shot made it into the theatrical release. Warner Bros. Pictures has released one such scene.

In case you couldn’t tell by the nature of this post, the following article and the video contained in it feature spoilers to Batman v Superman: Dawn of Justice.

In the deleted scene, which was posted on the official Warner Bros. YouTube channel, we get a new glimpse of Jesse Eisenberg’s Lex Luthor. Instead of dealing with Batman, Superman, Wonder Woman, or Doomsday, we see him interacting with a mysterious demonic figure. We don’t know who this character is, but some have theorized that it is related to Darkseid, one of the big bads of the DC universe. You can view the scene for yourself below.

While Batman v Superman: Dawn of Justice has garnered mostly negative reviews from critics, the fan base has been more divided. Either way, Batman v Superman: Dawn of Justice posted some impressive numbers over the course of its first weekend in theaters, earning its place atop the list of highest-earning superhero debuts. That not only increases the likelihood that the films will continue as planned, but it also means we could eventually learn who or what the mysterious creature Lex is communicating with in this scene is.

[Source: Warner Bros. Pictures on YouTube, The Hollywood Reporter]

As Apple battles the FBI in court to fight the demand that the company help crack its own encryption, it’s helpful to remember: Crypto systems are pretty fragile to begin with. And nothing illustrates that better than Apple today pushing out a fix to a security flaw that could have left millions of supposedly secured photos and videos exposed to eavesdroppers. If you normally wait a while to update to the latest iOS, you should make an exception in this case, and do it now.

The Hack

In its release of iOS 9.3 on Monday, Apple has also included a patch that’s meant to repair a serious flaw in its iMessage encryption system. The fix comes in response to a possible attack revealed by researchers at Johns Hopkins University, who privately informed Apple of the problem in November of last year.

The researchers’ method, which they previewed to the Washington Post and will fully detail in an upcoming paper, takes advantage of how iMessage sends photos, videos and other files: By storing them in an encrypted form on an Apple server along with an encrypted key to decrypt them, and then allowing the intended recipient to download that data.

If attackers can obtain that encrypted message, they can impersonate an Apple server (as far as the recipient’s phone is concerned) and repeatedly send different versions of the encrypted file and key, each one with a tiny portion of the message altered. How the phone responds to the attacker’s purposeful deformations—whether it accepts the form of the message or rejects it as invalid—reveals tiny hints about the contents. After about 130,000 of those attempts, the attacker can determine the entire key and decrypt the file. And because the server gives the phone an invalid download location of the target file that causes it to ultimately ignore every request, that entire interaction with the intended recipient’s phone isn’t revealed in messages popping up on his or her screen. “The user never sees it, the phone never displays anything,” says Ian Miers, one of the graduate researchers who developed the attack. “But the [recipient’s] computer has tried to reach out and grab the file, and we get to observe that and see whether we crafted the message correctly.”

Who’s Affected?

First, the good news: iOS 9.3, which Apple released today along with a parallel update Apple is releasing for the desktop version of iMessage, fixes the flaw. And the Johns Hopkin researchers kept the attack carefully under wraps until those patches were public. But now the bad news: anyone who doesn’t install the update to both their iPhone and their OSX iMessage client could still potentially have files that are sent to them decrypted using the technique. And it’s important to note that the recipient, not the sender, is the one whose devices must be patched to fully prevent the attack.

Even before today’s patch, older versions of iOS were more vulnerable to the attack than more recent ones. One major hurdle of the technique is that—as in all encryption attacks—the attackers need to somehow already get their hands on whatever message they’re hoping to decrypt. That encrypted file can be obtained from a law enforcement request or by hacking Apple’s servers. But there’s an easier way to get messages off phones running any iOS version before iOS 9: if the cryptographic certificate Apple uses to authenticate users can be spoofed, the encrypted message could also be obtained by eavesdroppers on the user’s network. After iOS 9, Apple implemented “certificate pinning,” a measure designed to prevent that spoofing.

How Serious Is This?

The Johns Hopkin researchers’ work represents a rare and deep crack in Apple’s encryption protections. But Miers says that the average iPhone owner shouldn’t panic: For more recent versions of iOS, at least, the technique requires hacking Apple’s server infrastructure or obtaining the company’s cooperation through legal demands. Even so, he advises that everyone should update immediately, not just those concerned with highly motivated hackers or law enforcement.

Miers says the larger point applies to the ongoing conversation around mandating backdoors in encryption, and the FBI’s standoff with Apple over its demand that the company help crack the encrypted iPhone of San Bernardino killer Syed Rizwan Farook. In fact, Apple had already come under fire from the DEA in 2013 specifically because of the encryption measures in iMessage. But even without law enforcement backdoors or special assistance from the company in cracking its own encryption, it turns out that iMessage’s data protections had significant flaws of their own, which law enforcement could have exploited.

“The real message is that encryption is hard. People thought iMessage was secure, and wanted to add ways for law enforcement to get access to it,” says Johns Hopkin’s Miers. “It’s hard [to protect data] even when you don’t to do that. When you do, you make it even harder.”

Go Back to Top. Skip To: Start of Article.

Please enter your date of birth to view this video

January February March April May June July August September October November December1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31Year 2016 2015 2014 2013 2012 2011 2010 2009 2008 2007 2006 2005 2004 2003 2002 2001 2000 1999 1998 1997 1996 1995 1994 1993 1992 1991 1990 1989 1988 1987 1986 1985 1984 1983 1982 1981 1980 1979 1978 1977 1976 1975 1974 1973 1972 1971 1970 1969 1968 1967 1966 1965 1964 1963 1962 1961 1960 1959 1958 1957 1956 1955 1954 1953 1952 1951 1950 1949 1948 1947 1946 1945 1944 1943 1942 1941 1940 1939 1938 1937 1936 1935 1934 1933 1932 1931 1930 1929 1928 1927 1926 1925 1924 1923 1922 1921 1920 1919 1918 1917 1916 1915 1914 1913 1912 1911 1910 1909 1908 1907 1906 1905 1904 1903 1902 1901 1900

By clicking ‘enter’, you agree to GameSpot’s

Terms of Use and Privacy Policy

enter