It’s petrifying to think that a technology company is storing passwords in plaintext, despite the constant news headlines of security breaches and hacks.
Read more in my article on the State of Security blog.
Far from being the geniuses that the media like to portray, malicious hackers can make mistakes just as well as the next person… and that’s certainly true of whoever was behind the TorrentLocker ransomware.
Read more in my article on the Tripwire State of Security blog.
Boffins have created a free service to help anyone has fallen foul of the notorious CryptoLocker ransomware that encrypts computer files and demands a ransom be paid for the decryption key.
More and more gadgets and devices around the home are leaping on the Internet of Things (IoT) bandwagon, and getting connected to the net. But are vendors treating security as a priority?
Read more in my article on the Hot for Security blog.
Security expert Gavin Millard has an embarrassing confession to make.
And it’s all about his past use of passwords…
Cryptowall takes the data on your Windows computer hostage, and demands that a financial payment is made in order to regain access to the lost files.
Read more about the threat in my article on the Intralinks blog.
Guest contributor Philip Le Riche asks himself, should he still use TrueCrypt?
The whole TrueCrypt saga has brought into focus an issue which has been central to security thinking in government circles for many years: that of assurance.
Is this crazy talk or have internet users really stumbled across a secret message from the developers of TrueCrypt alleging an NSA backdoor?
Remember the Heartbleed scare which had you scurrying to change your passwords and worrying about online privacy a few weeks ago?
Well, it looks like that wasn’t the last word in security issues with OpenSSL.
A team of developers are hoping to rescue TrueCrypt, or – at the very least – develop a new product based upon its code.
Boffins at security firm Bromium have discovered that the CryptoDefense malware has been spread via boobytrapped webpages, in an attempt to make more money for its creators.
Once again, turning off Java could help protect you.
Whether hoax, hack or genuine end-of-life for TrueCrypt, it’s clear that no security-conscious users are going to feel comfortable trusting the software after this debacle. It’s time to start looking for an alternative way to encrypt your files and hard drive.
Time and time again we hear about big companies (*cough*eBay*cough*) having serious security breaches, which result in users’ private information being exposed.
But why is it so important that user passwords are salted and hashed rather than simply “encrypted”? Watch these videos to find out.
Want to keep your instant messaging chats secret from Facebook?
The Cryptocat app claims to do just that. But, Facebook already has plans to kill it off.
If you administer a server and have so far put off revoking and reissuing your SSL certificates, it might be time to think again.
If you don’t, you could be putting your users and online customers in jeopardy.