As everyone waits for news of a bug in OpenSSL, here's a reminder that other cryptographic code in your life may also need patching!
...moreSummary
Total Articles Found: 8
Top sources:
Top Keywords:
- Cryptography: 8
- Vulnerability: 2
- Research: 2
- vulnerability: 2
- cryptograhpy: 1
Top Authors
- Paul Ducklin: 2
- Bas Westerbaan: 1
- Nate Nelson: 1
- Tara Seals: 1
- m4ttlewis: 1
Top Articles:
- Billions of Devices Open to Wi-Fi Eavesdropping Attacks
- FBI asks Apple to help it unlock iPhones of naval base shooter
- Big bad decryption bug in OpenSSL – but no cause for alarm
- Popular NFT Marketplace Phished for $540M
- SHA-3 code execution bug patched in PHP – check your version!
- Introducing post-quantum Cloudflare Tunnel
- Properly Signed Certificates on CPE Devices
- Cranim: A Toolkit for Cryptographic Visualization
SHA-3 code execution bug patched in PHP – check your version!
Published: 2022-11-01 14:09:10
Popularity: 24
Author: Paul Ducklin
Keywords:
Introducing post-quantum Cloudflare Tunnel
Published: 2022-10-03 13:00:00
Popularity: 2
Author: Bas Westerbaan
Keywords:
Every connection we make post-quantum secure, we remove one opportunity for compromise: that's why we are announcing post-quantum Cloudflare Tunnel to help you secure every connection to our network
...morePopular NFT Marketplace Phished for $540M
In March, a North Korean APT siphoned blockchain gaming platform Axie Infinity of $540M.
...moreBig bad decryption bug in OpenSSL – but no cause for alarm
Published: 2021-08-27 01:03:21
Popularity: 44
Author: Paul Ducklin
Keywords:
The buggy code's in there, alright. Fortunately, it's hard to get OpenSSL to use it even if you want to, which mitigates the risk.
...moreBillions of Devices Open to Wi-Fi Eavesdropping Attacks
Published: 2020-02-27 04:07:18
Popularity: 990
Author: Tara Seals
Keywords:
The Kr00k bug arises from an all-zero encryption key in Wi-Fi chips that reveals communications from devices from Amazon, Apple, Google, Samsung and others.
...moreProperly Signed Certificates on CPE Devices
Published: 2020-02-04 09:04:08
Popularity: None
Author: m4ttlewis
Keywords:
LLM Says: ""Secure Certs Only""
During late January 2020, a hot topic surfaced between security professionals on an issue that has historically had different proposed solutions. This blog post seeks to explore these solutions and identify pragmatic approaches to risk reduction on this specific issue concerning Customer Premises Equipment (CPE) security. Two security researchers (Tom Pohl and Nick Starke) analysed … Continue reading Properly Signed Certificates on CPE Devices →
...moreFBI asks Apple to help it unlock iPhones of naval base shooter
Published: 2020-01-09 11:41:31
Popularity: 188
Author: Lisa Vaas
Keywords:
This could signal a renewed war between Apple and law enforcement over breaking encryption.
...moreCranim: A Toolkit for Cryptographic Visualization
Published: 2024-05-24 19:30:00
Popularity: None
Author: Eli Sohl
Keywords:
LLM Says: "encrypting brains"
Let’s kick this off with some examples. Here’s a seamless loop illustrating CBC-mode encryption: Here’s a clip showing a code block being rewritten to avoid leaking padding information in error messages: Here’s an illustration of a block cipher operating in CTS mode: You may be surprised to learn that each of these illustrations was generated […]
...more