If you administer a server and have so far put off revoking and reissuing your SSL certificates, it might be time to think again.
If you don’t, you could be putting your users and online customers in jeopardy.
Amazingly, the OpenSSL Heartbleed bug appears to have been around for about two years. Which means that – in theory at least – this gaping security hole could have been actively exploited by unauthorised parties for a long period of time.
System administrators, I hope you weren’t planning to have an easy day today?
The potentially disastrous news is that a serious security flaw has been uncovered in versions of OpenSSL’s transport layer security (TLS) protocols.
Dropbox admits it is checking files shared publicly on its systems for copyright infringements.
If you don’t like it, you have to start securely encrypting your data *before* you upload it to the cloud.
Here’s some good news for the privacy conscious, and anyone who thinks the NSA may have overstepped the mark with their digital surveillance of Google…
MtGox, the Bitcoin exchange which dramatically shut its doors last week after it revealed hackers had stolen approximately $477 million worth of the digital currency, has opened a telephone hotline for affected customers.
But will your call be answered?
Over one million readers of the Forbes website might be wise to change their password, and keep an eye open for suspicious emails, after a group of notorious hackers gained access to user information and published it online.
French telecom firm Orange says that it lost nearly 800,000 customer details.
The good news: Orange says the passwords can’t be used.
The bad news: we don’t have a clue what that means. Were they encrypted? Were encrypted passwords salted and hashed? Orange isn’t saying.
Anyone working in cryptography research now needs to consider themselves a potential target for state-sponsored cyber-attack, even from countries who you might consider to be on the same side as you.
Alan Turing, the British mathematicial genius who cracked the German Enigma code and helped bring an end to World War II, has received a royal pardon 59 years after his death.
The NSA arranged a secret $10 million deal with security firm RSA that ultimately resulted in the company incorporating a flawed algorithm for generating random numbers into its products, creating a backdoor into encrypted communications.
“Cloud” is a lovely, fluffy, comforting word.
Is that why we trust it more than saying we’re storing our data on “someone else’s computer”?
Always be wary of software which seems to be too good to be true. It may well be trying to make money at your expense.
British PM David Cameron says the news has been full of stories of the sheer brilliance of the GCHQ and the NSA.
Do you think their internet surveillance has been brilliant? And what do you think of Google and Microsoft’s initiative to deter paedophiles?
In a screw-up of colossal proportions, Adobe didn’t properly protect the password data on its servers… and now we can all see the most common passwords used by its customers.