Encryption

Encryption news, trends, analysis and practical advice

Technique allows attackers to hide Android malware in images

A new technique that allows attackers to hide encrypted malicious Android applications inside images could be used to evade detection by antivirus products and possibly Google Play's own malware scanner.

Encryption

SSL,TLS, POODLE, email, Fastmail, Popcorn and me

The POODLE flaw in SSL version 3 also impacts email.

poodle ssl 3

POODLE poos on flaw (in SSL) as Google causes panic

SSL is attack dog when protocol-downgrade sinks teeth in leg: Google infosec researchers have found a new nasty TLS downgrade attack. While we all knew these old versions of SSL crypto were insecure, it's always been thought hard to...

national security agency headquarters fort meade maryland

Can the iPhone 6 really defeat the NSA?

There are loopholes in Apple’s claim, and law enforcement’s outrage seems disingenuous.

Binary bomb with a lit fuse

Security experts warn of 'POODLE' attack against SSL 3.0

Google researchers have found a severe flaw in an obsolete but still used encryption software that could be exploited to steal sensitive data.

Encrypt for privacy

Encryption IS for the children; it's the gift of electronic privacy rights

Law enforcement is freaking out over Apple and Android smartphone encryption plans, claiming it could be used by sickos harming kids and hinder investigations, but why can’t the encryption argument be made for the children and the...

eric holder reuters larry downing

Eric Holder says 'worrisome' tech companies are eyeing encryption

US attorney general's remarks follow similar concerns from the FBI

Encryption

Google to turn on encryption by default in next Android version

Google is turning on data encryption by default in the next version of Android, a step that mirrors broad moves in the technology industry to ensure better data security.

bittorrent bleep2

BitTorrent opens Bleep peer-to-peer encrypted chat program to public testing

Nine months after revealing plans to develop a decentralized and encrypted chat application, BitTorrent opened public testing for Windows, Mac and Android versions of the program. Called Bleep, the application supports voice...

gmail hacked

No, Gmail was not cracked! Don't believe bogus blogs

Do you trust every word you read on the Web? Worrying reports out of Russia apparently claim that Gmail was hacked and your login details were stolen. Or, at least, that's the breathless interpretation of countless bloggers and...

ransomware

CryptoWall ransomware held over 600,000 computers hostage, encrypted 5B files

CryptoWall infected over 600,000 computer systems in the past six months and held 5 billion files hostage, earning its creators more than $1 million.

Retailers warned to act now to protect against Backoff malware

The Payment Card Industry Security Standards Council issued a bulletin urging retailers to immediately review their security controls to ensure point-of-sale systems are protected against 'Backoff,' a malware tool that was used in the...

We DO trust users -- that's why we have failsafes

This company decides to give its board members iPads so they can receive and review reports and requests prior to each monthly meeting, says a pilot fish who's part of the project. "The information emailed to each board member...

Facebook moves to protect user data with PrivateCore buy

Facebook Thursday moved to beef up its servers by agreeing to buy cybersecurity startup PrivateCore.

Oracle issues a virtual strongbox for enterprise encryption keys

Managing the keys of all your valuable resources, be they in the real world or the virtual, can be a hassle. Managing all the encryption keys for an entire enterprise is a harder challenge still.

Google lowers search ranking of websites that don't use encryption

None

OpenSSL, critical Web encryption tool, gets nine software fixes

Nine software fixes were released Wednesday for OpenSSL, a critical encryption component for exchanging data on the web, although none of the problems are as severe as the 'Heartbleed' issue found in April.

Attackers can easily create dangerous file-encrypting malware, new threat suggests

A new program that encrypts files to extort money from users highlights that attackers don't need advanced programming skills to create dangerous and effective ransomware threats, especially when strong encryption technology is freely...

iPhone gets first free app for encrypting voice calls

An open-source project has released the first free application for the iPhone that scrambles voice calls, which would thwart government surveillance or eavesdropping by hackers.

Load More