New versions of GPG and its crypto library Libgcrypt were released on Wednesday addressing a vulnerability that could allow an attacker to predict Libgcrypt RNG output.
Browsing Tag: Encryption
Two academics discussed just how woefully inadequate some services are encryption-wise in a talk at Black Hat on Thursday.
The Seeking Alpha mobile app operates without a measure of encryption, putting user information, including credentials and strategic financial interests at risk.
Google last week announced changes in the way it will handle trusted Certificate Authorities in Nougat, the latest version of the Android operating system.
Google has announced its first venture into post-quantum cryptography with the use of a post-quantum key-exchange algorithm in the Canary test build of the Chrome browser.
Facebook today began a test program rolling out opt-in end-to-end encryption for its Messenger service called Secret Conversations.
Mike Mimoso, Tom Spring and Chris Brook discuss the news of the week, including all things Android: the crypto weakness, the full disk encryption bypass, and new malware, Hummingbad, which impacts the mobile operating system. The three also discuss the TP-Link router fiasco.
The default implementation for KeyStore, the system in Android designed to store users credentials and cryptographic keys, is broken, researchers say.
At last week’s Apple Worldwide Developer Conference, Apple announced some security upgrades around Gatekeeper and a new filesystem that includes native support for encryption. Mac hacker Patrick Wardle, director of research at Synack, explains whether this a big deal and how the upgrades address some problems he’d disclosed to Apple.
High-severity vulnerabilities were found in pre-installed software updaters present in consumer and business laptops from vendors such as Dell, HP, Lenovo, Asus and Acer.