-
D-Link blunder: Firmware encryption key exposed in unencrypted image
The router manufacturer leaks encryption keys in some firmware versions letting reverse engineers decrypt the latest firmware images.
- July 22, 2020
- 12:01 PM
4
-
Ransomware operators lurk on your network after their attack
When a company suffers a ransomware attack, many victims feel that the attackers quickly deploy the ransomware and leave so they won't get caught. Unfortunately, the reality is much different as threat actors are not so quick to give up a resource that they worked so hard to control.
- June 21, 2020
- 12:28 PM
1
-
Sponsored Content
Free shadow SaaS inventory + security insightsDiscover all SaaS accounts ever created by anyone in your org, in minutes, along with insights on security risks and spend. Save time, money and effort by curbing SaaS sprawl and automating tasks like offboarding and user access reviews. Free trial.
-
Zoom will provide end-to-end encryption to all users
Zoom's CEO Eric S. Yuan today announced that end-to-end encryption (E2EE) will be provided to all users (paid and free) after verifying their accounts by providing additional identification info such as their phone number.
- June 17, 2020
- 01:31 PM
- 0
-
Office 365 to let regular users revoke encrypted messages
Microsoft is working on expanding the capability to revoke encrypted email messages sent using the Office 365 Message Encryption (OME) service to regular users as part of a larger effort to prevent data leaks and enterprise data theft.
- May 11, 2020
- 06:16 PM
- 0
-
Maze ransomware fails to encrypt Pitney Bowes, steals files
Global business services company Pitney Bowes recently stopped an attack from Maze ransomware operators before the encryption routine could be deployed but the actor still managed to steal some data.
- May 11, 2020
- 12:41 PM
- 0
-
Microsoft to Make Office 365 Encrypted Emails Look Less Spammy
Microsoft is currently working on enhancing the way emails sent using the Office 365 Message Encryption service are seen by mail servers so that they are less likely to be marked as spam and sent to the Trash folder.
- December 06, 2019
- 03:50 PM
- 0
-
Ryuk Ransomware Is Making Victims Left and Right
Doing some open-source intelligence (OSINT), a security researcher discovered that a provider of end-to-end solutions for emergency care facilities in the U.S. fell victim to Ryuk ransomware.
- December 03, 2019
- 02:02 PM
- 0
-
NSA Publishes Advisory Addressing Encrypted Traffic Inspection Risks
The National Security Agency (NSA) published an advisory that addresses the risks behind Transport Layer Security Inspection (TLSI) and provides mitigation measures for weakened security in organizations that use TLSI products.
- November 19, 2019
- 05:26 PM
- 0
-
Brooklyn Hospital Loses Patient Data In Ransomware Attack
A ransomware attack hitting several computer systems at the Brooklyn Hospital Center in New York caused permanent loss of some patient's data.
- November 05, 2019
- 07:07 AM
- 0
-
Hackers Patch Web Browsers to Track Encrypted Traffic
Researchers have found a new piece of malware, likely from an advanced threat group, that can patch Chrome and Firefox browsers to identify the encrypted traffic from a victim's computer.
- October 08, 2019
- 03:28 AM
- 0
-
Dutch Govt Explains the Risks Behind DNS-Over-HTTPS Move
The Dutch National Cyber Security Centre (NCSC) explains how DNS-monitoring will get more difficult as modern encrypted DNS transport protocols are getting more popular in a fact sheet published this week.
- October 04, 2019
- 05:34 PM
- 1
-
New Bluetooth KNOB Attack Lets Attackers Manipulate Traffic
A new Bluetooth vulnerability named "Key Negotiation Of Bluetooth attack" or "KNOB" has been disclosed that allow attackers to more easily brute force the encryption key used during pairing to monitor or manipulate the data transferred between two paired devices.
- August 13, 2019
- 05:18 PM
- 0
-
Leapfrog Children’s Tablet Owners Should Remove Pet Chat Now
Several vulnerabilities in apps available for LeapFrog's LeapPad tablets for children could be used to locate kids, interact with them, or phish parents for sensitive info. The tablets themselves did not use HTTPS, exposing them to packet sniffing.
- August 07, 2019
- 07:37 AM
- 0
-
Trivial Bugs in Western Digital SSD Utility Puts Owners at Risk
Security researchers have released details about two vulnerabilities in Western Digital and SanDisk SSD Dashboard applications that could be exploited to trick users into running arbitrary code on their computers.
- July 31, 2019
- 08:01 AM
- 0
-
IRS Improved Security But Taxpayer Data Is Still At Risk
The U.S. Internal Revenue Service (IRS) failed to implement a good deal of security controls recommended over the years, leaving financial reporting and taxpayer data vulnerable to "inappropriate and undetected use, modification, or disclosure."
- July 21, 2019
- 10:30 AM
- 0
-
Ransomware Attacks Grow Rampant, Paying Still Not a Good Option
A flurry of ransomware attacks has been reported this week affecting entities in US states of Georgia, New York, Tennessee, and Florida.
- July 19, 2019
- 07:34 AM
- 0
-
Microsoft OneDrive Gets a New Encrypted 'Personal Vault'
Due to the ever increasing growth of online threats that target your sensitive data, Microsoft has created a new OneDrive feature called 'Personal Vault' that will allow you encrypt and store your files in a secured container.
- June 25, 2019
- 01:44 PM
- 0
-
Phishing Websites Increase Adoption of HTTPS
As the adoption of cryptographic protocols for secure website communication increased, cybercrooks also moved to HTTPS to keep their operation floating.
- June 21, 2019
- 03:12 AM
- 0
-
Food Bank Hit By Ransomware, Needs Your Charity to Rebuild
Ransomware attacks hit indiscriminately and sometimes they may affect charitable organizations that can't afford to surrender to the demand. Auburn Food Bank in King County, Washington, fell victim to a ransomware strain known as GlobeImposter 2.0, which encrypted all computers on their network.
- June 11, 2019
- 03:09 AM
- 2
-
German Minister Wants Secure Messengers To Decrypt Chats
Germany's Interior Minister Horst Seehofer purportedly wants to force messaging providers such as WhatsApp, Telegram, and Threema to provide plain text chats to law enforcement agencies on a court order as reported by Der Spiegel and from a number of other German news outlets.
- May 24, 2019
- 12:09 PM
- 1
1
