I'm not entirely convinced that "coil whine" -- which would respond to overall system activity -- would have enough information specifically about the cryptokey to make this work.
If they were attributing this to a microphonic chip, I'd find it a bit more believable. But that's still a matter of whether the right chip is cooperating.
If they were going after radio noise, Tempest-style, I'd find it more believable.
I'm not quite ready to call bullshit. I AM ready to call for independent replication before we take the claim at all seriously.
"Any sufficiently advanced technology is indistinguishable from a rigged demo."