Skip the navigation

Encryption Topic Center

Encryption news, in-depth articles and more

Encryption News

Satellite communication systems are rife with security flaws, vulnerable to hackers

Security researchers have found that many satellite communication systems have vulnerabilities and design flaws that can let remote attackers intercept, manipulate, block and in some cases take full control of critical communications.
Read more...

Lavaboom creates an encrypted webmail service that fends off snooping

A new webmail service called Lavaboom promises to provide easy-to-use email encryption without ever learning its users' private encryption keys or message contents.

VMware promises Heartbleed patches for affected products by the weekend

VMware started patching its products against the critical Heartbleed flaw that puts encrypted communications at risk, and plans to have updates ready for all affected products by Saturday.

Google said to be eyeing a boost to encrypted sites in search results

Websites that use encryption could be elevated in Google search results sometime in the future, according to The Wall Street Journal.

Heartbleed bug can expose private server encryption keys

Four researchers working separately have demonstrated a server's private encryption key can be obtained using the Heartbleed bug, an attack thought possible but unconfirmed.

Akamai admits issuing faulty OpenSSL patch, reissues keys

Akamai Technologies, whose network handles up to 30% of all Internet traffic, said Sunday a researcher found a fault in custom code that the company thought shielded most of its customers from the Heartbleed bug.

Stung by file-encrypting malware, researchers fight back

Jose Vildoza's 62-year-old father was using his old Windows computer when a warning in broken English flashed on the screen: your files have been encrypted.

Low adoption rate of HSTS website security mechanism is worrying, EFF says

Almost a year and a half after the HTTP Strict Transport Security (HSTS) mechanism was established as a standard, its adoption rate by websites remains low because developers are not aware of its benefits and Internet Explorer still doesn't support it, according to advocacy group the Electronic Frontier Foundation.

BlackBerry pushes BBM Protected for end-to-end encrypted messaging

BlackBerry is promoting an upcoming end-to-end encrypted messaging service called BBM Protected for industries that need the highest levels of security.

Google touts extra encryption for Gmail, remains mum on other apps

Google recently trumpeted that it now encrypts Gmail messages while shuffling them among its data centers, an extra security layer aimed at thwarting government and criminal snoops, but didn't say if it applies this protection to its other applications.

Encryption In Depth

How to defend against the OpenSSL Heartbleed flaw

CSOs need to take a number of steps as soon as possible to protect their organizations against the OpenSSL vulnerability that has shaken the tech industry, experts say.

What you need to know about Heartbleed and OpenSSL

You know that little padlock icon you look for to ensure your Web traffic is encrypted and secure? It turns out that you might not be as secure as you think thanks to a vulnerability that was accidentally introduced into the code of OpenSSL.

A clear-eyed guide to Mac OS X's actual security risks

Apple has improved its security in recent years, but is it enough?

Security Manager's Journal: Security flaw shakes faith in Apple mobile devices

And without remote management, getting patches onto devices scattered throughout the organization is hit or miss.

Kenneth van Wyk: Apple's big fail

It's disturbing that Apple would release an essential fix for iOS while ignoring the exact same problem in OS X.

Ira Winkler: The RSA Conference boycott is nonsense

The outrage is more about media hype, hypocrisy and grandstanding than firm principles.

The security industry finds a dream enemy -- government spy agencies

2013 was the year we learned we must encrypt our data if we don't want the likes of the U.S. National Security Agency or the U.K. Government Communications Headquarters reading it as it crosses the Internet.

Electronic privacy? There's no such thing

You will never be secure if you labor under the delusion of privacy.

Jay Cline: What will Snowden leak next?

What if NSA leaker Edward Snowden hasn't been reckless but instead is following a carefully thought-out plan? If so, we can make some guesses about what revelations will come next.

How to avoid Big Brother's gaze

Deciding on the level of encryption you should be using requires careful consideration.