encryption Archives - Help Net Security

(IN)SECUREMagazine

face

Privacy laws do not understand human error

November 20, 2018
CISO
compliance
cybersecurity

In a world of increasingly punitive regulations like GDPR, the combination of unstructured data and human error represents one of the greatest risks an organization faces. …

SSD

Self-encrypting SSDs vulnerable to encryption bypass attacks

November 6, 2018
Crucial
encryption
hardware

Researchers have discovered security holes in the hardware encryption implementation of several solid state disks (SSDs) manufactured by Crucial (owned by Micron) and Samsung, …

Intra

Jigsaw releases Intra, an Android app that encrypts DNS queries to thwart online censorship

October 4, 2018
Alphabet
Android
censorship

Alphabet subsidiary and tech incubator Jigsaw, which concentrates on creating solutions for “the toughest geopolitical challenges,” has released Intra, an Android …

vault

What do you mean by storage encryption?

In my year-long research project, the F5 Labs’ 2018 Application Protection Report, I asked if security professionals used storage encryption for data and applications. About …

WhatsApp warns that Google Drive backups are not encrypted

Facebook-owned WhatsApp has recently announced that, starting on November 12, 2018, Android users will be able to store their WhatsApp backups on Google Drive without the …

quantum

Who’s trying to eavesdrop on your customers’ encrypted mobile traffic?

The number one source of TLS/SSL Man in the Middle (MitM) attacks on encrypted mobile traffic are not corporate firewalls or captive portals used by hotels, airports and other …

laptop

Don’t sleep on laptop security, safeguard your data

For many of us, shutting our laptops after a tough day in the office is a satisfying feeling that signals the end of work until tomorrow. But what we don’t realise is that …

open lock

Networking vendors patch against new cryptographic attack

Vulnerable IPSec IKE implementations used in Cisco, Huawei, ZyXel and Clavister networking devices can allow attackers to retrieve session keys and decrypt connections, …

Election systems should be considered critical infrastructure

93 percent of security professionals are concerned about cyber-attacks targeting election infrastructure and data, and 81 percent believe cyber criminals will target election …

Bluetooth

Bluetooth vulnerability allows snooping of traffic between paired devices

July 24, 2018
Apple
Bluetooth
Dell

Researchers Eli Biham and Lior Neumann have discovered a vulnerability in two Bluetooth features that could be exploited by attackers to gain a man-in-the-middle position and …

Don't miss

Adobe Flash

Adobe plugs critical RCE Flash Player flaw, update ASAP! Exploitation may be imminent

biohazard

Conficker: A 10-year retrospective on a legendary worm

shopping

The holiday season and cybercrime: 8 ways to protect yourself

Coins

Make-A-Wish website compromised to serve cryptojacking script

TP-Link TL-R600VPN

“Classic” bugs open TP-Link’s SafeStream Gigabit Broadband VPN Router to attack

face

Privacy laws do not understand human error

Hand

66.1% of vulnerabilities published through Q3 2018 have a documented solution

Users lock

Third parties: Fast-growing risk to an organization’s sensitive data

connections

Only 14% have complete organizational awareness of IoT threats

AWS

New security feature to prevent Amazon S3 bucket misconfiguration and data leaks

code

Helping researchers with IoT firmware vulnerability discovery

Specops Password Policy

Review: Specops Password Policy