Cryptography – Page 8 – PossibleThreat Articles

S2 Ep27: Bluetooth holes, dodgy Chrome extensions and forgotten passwords – Naked Security Podcast

February 21, 2020 0 Comments bluetooth, chrome, Cryptography, cybersecurity, Naked Security Podcast, news, Podcast, sweyntooth, tech

Credit to Author: Alice Violet| Date: Fri, 21 Feb 2020 14:32:45 +0000

New episode – listen now!<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/RNXX7HxPuPc” height=”1″ width=”1″ alt=””/>

Security Sophos

OpenSSH eases admin hassles with FIDO U2F token support

February 19, 2020 0 Comments 2fa, cryptographic keys, Cryptography, fido, fido u2f, hashing, openssh, passwordless login, Privacy, sha-1, ssh

Credit to Author: John E Dunn| Date: Wed, 19 Feb 2020 11:00:53 +0000

OpenSSH version 8.2 is out and the big news is that the world’s most popular remote management software now supports authentication using any FIDO (Fast Identity Online) U2F hardware token.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/sDQy3vGdNuw” height=”1″ width=”1″ alt=””/>

Security Sophos

Malware and HTTPS – a growing love affair

February 18, 2020 0 Comments Cryptography, malware, SophosLabs, TLS

Credit to Author: Paul Ducklin| Date: Tue, 18 Feb 2020 13:32:46 +0000

HTTPS web encryption – blessing or curse? A new SophosLabs report looks at how much the crooks love TLS.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/2I1AdG1EeE4″ height=”1″ width=”1″ alt=””/>

Security Sophos

Data about inmates and jail staff spilled by leaky prison app

February 12, 2020 0 Comments amazon, amazon s3, amazon simple storage service (s3) bucket, Cloud, cloud storage, correctional facility, correctional risk services, crs technologies, Cryptography, data breach, data leak, data loss, exposed database, google cloud, inmates, jailcore, jailhouse, Law & order, PII, port scanning, prescriptions, prison, prisoners, Privacy, privacy policy, s3 bucket, security threats, sha-256, ssl certification, terms of service, tos, vpnMentor, web mapping

Credit to Author: Lisa Vaas| Date: Wed, 12 Feb 2020 10:16:24 +0000

A web-mapping project came across detainees’ prescriptions and other PII that could be used by identity thieves to victimize prisoners.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ypFJWLIWMOE” height=”1″ width=”1″ alt=””/>

Security Sophos

Facebook encrypted messaging will ‘create hiding places for child abuse’

February 10, 2020 0 Comments chat apps, child abuse, child abuse imagery, child safety, children online, Cryptography, encryption, facebook, Instagram, Law & order, messaging, Messenger, nspcc, online grooming, online safety, open letter, predators, Privacy, whatsapp

Credit to Author: Lisa Vaas| Date: Mon, 10 Feb 2020 11:44:10 +0000

Child safety groups penned an open letter to Facebook, urging a delay on encrypted messaging until sufficient safeguards are in place.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ns3LDtnKrEc” height=”1″ width=”1″ alt=””/>

Security Sophos

Google launches open-source security key project, OpenSK

February 3, 2020 0 Comments ble, Cryptography, data loss, dongle, fido, fido u2f, FIDO2, Google, nfc, nordic, opensk, security key, usb, WebAuthn, Yubikey

Credit to Author: Danny Bradbury| Date: Mon, 03 Feb 2020 11:02:06 +0000

OpenSK is a piece of firmware that you can install on a USB dongle of your own, turning it into a usable FIDO or U2F key.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ku-9LnVkKCo” height=”1″ width=”1″ alt=””/>

Security Sophos

Apple allegedly made nice with FBI by dropping iCloud encryption plan

January 23, 2020 0 Comments #nobackdoors, Apple, backdoors, backups, Cryptography, data loss, encryption, FBI, icloud, iOS, iPhone, keydrop, Law & order, Mobile, plesio, Privacy, security threats

Credit to Author: Lisa Vaas| Date: Thu, 23 Jan 2020 11:05:12 +0000

Sources told Reuters that Apple may have been convinced by arguments made during the legal fight over cracking the San Bernardino iPhone.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/qyltSL5-IRc” height=”1″ width=”1″ alt=””/>

Security Sophos

NSA and Github ‘rickrolled’ using Windows CryptoAPI bug

January 16, 2020 0 Comments cryptoapi, Cryptography, cve-2020-0601, Exploit, Microsoft, NSA, rickroll, vulnerability, Windows

Credit to Author: Paul Ducklin| Date: Thu, 16 Jan 2020 17:42:09 +0000

We said, “Assume that someone will find out how to do it pretty soon,” and that’s exactly what happened.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/XhJpjHyVCqc” height=”1″ width=”1″ alt=””/>

Security Sophos

Apple says no to unlocking shooter’s phone; AG and Trump lash back

January 15, 2020 0 Comments #nobackdoors, alshamrani, Apple, attorney general william barr, backdoor, cellebrite, Cryptography, FBI, Florida, Forensics, iOS, iPhone, iphone cracking, Law & order, Mobile, mobile phone data, mohammed saeed alshamrani, murder, murderers, pensacola, Privacy, saudi royal air force, us naval base

Credit to Author: Lisa Vaas| Date: Wed, 15 Jan 2020 10:52:19 +0000

Attorney General Barr and President Trump are demanding Apple unlock the mass shooter’s iPhone. Apple replies: You can’t break just 1 phone.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ZRh0_aJQATA” height=”1″ width=”1″ alt=””/>

Security Sophos

Powerful GPG collision attack spells the end for SHA-1

January 13, 2020 0 Comments Cryptography, digital certificates, fake digital certificates, online privacy, pgp, pretty good privacy, security threats, sha-1

Credit to Author: Danny Bradbury| Date: Mon, 13 Jan 2020 13:54:29 +0000

New research has heightened an already urgent call to abandon SHA-1, a cryptographic algorithm still used in many popular online services.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/4sQ-pLfUpIU” height=”1″ width=”1″ alt=””/>