Topic: encryption vulnerabilities
-
Microsoft Retires Decades-Old Security Threat
Microsoft is removing the deprecated and cryptographically broken RC4 encryption cipher from Windows, ending a major security vulnerability exploited in high-profile attacks like Kerberoasting. The RC4 cipher, integrated into Active Directory in 2000, remained a default fallback for decades despi...
Read More » -
UK Slaps LastPass With Fine for 2022 Data Breach Affecting Millions
The UK's Information Commissioner's Office fined LastPass £1.2 million for failing to protect the personal data of up to 1.6 million users during a 2022 breach, where encrypted password vaults were stolen. The breach occurred in stages, starting with a compromised employee laptop and escalating w...
Read More » -
Quantum Encryption Strains Satellite Tech to the Brink
Quantum computing threatens global satellite network security, requiring an urgent shift to quantum-resistant cryptographic protocols to protect critical communications. Adopting post-quantum algorithms is essential for maintaining operational flexibility, as current asymmetric systems like RSA a...
Read More » -
Crypto at Risk: The Dangers of Outdated Encryption
The cryptocurrency industry faces critical security vulnerabilities, with no tested applications supporting post-quantum encryption and millions of user records already circulating on dark web markets, creating a "Harvest Now, Decrypt Later" risk. Despite overall concerns, exchanges like Coinbase...
Read More » -
Salesforce, CentreStack Hit by Hackers in Zero-Day Attacks
Major platforms like Salesforce and CentreStack have been compromised by zero-day vulnerabilities, underscoring the need for timely patching and robust security measures. Recent incidents include the Cl0p gang exploiting Oracle E-Business Suite flaws and North Korean hackers stealing over $2 bill...
Read More »