Speck supports configurations with keys small enough to be brute forcable.
There is a nice attack pattern where you standardize something with some insecure modes, then you use targeted attacks to get your targets to use those insecure modes.
I'm not aware of any non-NSA ciphers from the last decade that supports a 64-bit key...
This is a good point. They claim this is to support tiny devices but that would have to be a really tiny device for trimming 64 bits off a key to matter. The 128-bit and 256-bit key versions of Speck are probably fine, but...
There is a nice attack pattern where you standardize something with some insecure modes, then you use targeted attacks to get your targets to use those insecure modes.
I'm not aware of any non-NSA ciphers from the last decade that supports a 64-bit key...