Encryption

bitdefender.com

The NSA wants its algorithms to be a global IoT standard. But they’re simply not trusted

Part of the concern is that the Simon and Speck algorithms might contain encryption backdoors that would be abused by US authorities.

Read more in my article on the Bitdefender Box blog.


0 sec read

Signal and Telegram messaging services offline for some hours

Users of the popular encrypted messaging services Signal and Telegram have been reporting problems accessing the services.


44 sec read

welivesecurity.com

All HTTP websites to soon be marked as ‘not secure’ by Google Chrome

If you’re still running a website that is using insecure HTTP then it’s time to wake up and drink the coffee.

Because unless you take action soon, you’re going to find many of your visitors are going to distrust your website.

Read more in my article on the We Live Security blog.


0 sec read

Smashing Security #062: Tinder spying, Amazon shoplifting, and petrol pump malware

Your Tinder swipes can be spied upon, Amazon is opening high street stores that don’t require any staff, and Russian fuel pumps are being infected with malware in an elaborate scheme to make large amounts of money.

With Carole on a top secret special assignment, it’s left to security veteran Graham Cluley to discuss all this and much much more on the “Smashing Security” podcast with special guests David McClelland and Vanja Švajcer.


1 min read

Smashing Security podcast #059: An intro to Bitcoin and Blockchain

In this special “splinter” episode of the “Smashing Security” podcast we take a look at Bitcoin and Blockchain. What’s all the fuss about cryptocurrencies? How can you protect your Bitcoin wallet? And how does the Blockchain work?

Listen to the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by special guest Peter Ullrich of the “Explain Blockchain” podcast.


34 sec read

bitdefender.com

Amazon moves to stop S3 buckets leaking business data

Businesses don’t need to be targeted by sophisticated hackers to have private and sensitive data splashed across the newspaper headlines.

Read more in my article on the Bitdefender Business Insights blog.


0 sec read

bitdefender.com

FBI failed to break into nearly 7000 mobiles due to encryption

Unless law enforcement agencies can find a way to bypass the device’s security by exploiting a software flaw, the best they can hope for is to guess a mobile phone’s passcode or to find a suspect willing to cough up.

Read more in my article on the Hot for Security blog.


0 sec read

Smashing Security podcast #048: KRACK, North Korea, and an 18th century cyber attack

KRACK! Has the Wi-Fi vulnerability got you worried? Did North Korea hack a British TV company? And what have Dutch police learnt from Pokémon?

All this and more is discussed in the latest edition of the “Smashing Security” podcast by Graham Cluley and Carole Theriault, joined this week by Virus Bulletin editor Martijn Grooten.


50 sec read

KRACK Wi-Fi attack – the rules haven’t changed

KRACK may be the biggest vulnerability of the year – a flaw in the WPA2 protocol used to encrypt Wi-Fi communications.


1 min read

bitdefender.com

Disqus reveals data breach, but wins points for transparency

Disqus has public announced that its user database leaked in 2012, exposing the usernames, email addresses, sign-up dates, and last login dates of more than 17 million users.

Read more in my article on the Hot for Security blog.


0 sec read

bitdefender.com

Apple fixes flaw that displayed actual password rather than password hint

If you’re running macOS High Sierra on your desktop or laptop, stop right now and make sure you have applied the latest security update.

Read more in my article on the Hot for Security blog.


0 sec read

‘I don’t need to understand how encryption works,’ admits UK Home Secretary

Amber Rudd is fed up with “sneering” and “patronising” technology experts.


58 sec read

Adobe’s security team reveals its private PGP key

A careless finger fumble can easily put the security of your organisation at risk. Take care if cutting-and-pasting PGP keys!


1 min read

Smashing Security #039: Woah – are we talking to a cyborg?

Hackers could change emails in your inbox *after* they are delivered, the web is getting more and more encrypted, and hacked robots can be commanded to umm… stab you.

All this and more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by cyborg Scott Helme.


1 min read

‘Real people’ do not want secure communications, claims UK Home Secretary Amber Rudd

UK Home Secretary Amber Rudd argues that “real people” would be happy with imperfect, breakable security.


1 min read

welivesecurity.com

iOS VPN apps removed from Apple’s Chinese App Store

Apple has bowed to pressure from the regime in Beijing, and removed some VPN apps from the Chinese version of its iOS App Store.

Read more in my article on the We Live Security blog.


0 sec read