Contest aims to boost state of password encryption
Passwords are the most widely used security mechanism on the Web, so beefing up hashing algorithms, utilized to protect them, is important
Antone Gonsalves | 15 Feb | Read more
Passwords are the most widely used security mechanism on the Web, so beefing up hashing algorithms, utilized to protect them, is important
Antone Gonsalves | 15 Feb | Read more
Education on the proper use of certificates is needed in the industry, analyst says
Antone Gonsalves | 15 Feb | Read more
FIDO Alliance, DARPA vow to create better authentication, but new systems will have to attract users and providers, say security pros
Taylor Armerding | 14 Feb | Read more
Devices used by many radio and TV stations to broadcast emergency messages as part of the U.S. Emergency Alert System (EAS) contain critical vulnerabilities that expose them to remote hacker attacks, according to researchers from security consultancy firm IOActive.
Lucian Constantin | 13 Feb | Read more
One security expert called Yahoo's distributing of vulnerability-ridden versions of Java to small businesses 'shockingly irresponsible'
Antone Gonsalves | 13 Feb | Read more
If there's one thing that's become clear in the past several years, according to PayPal CISO Michael Barrett, it's that usernames and passwords--originally conceived in the era of centralized mainframes--have become more of a liability than a protection online.
Thor Olavsrud | 12 Feb | Read more
In a bid to give IT departments better control over devices that employees bring to work, ForeScout Technologies has added MobileIron to the list of mobile management vendors its network access control platform can be integrated with.
Mikael Ricknäs | 12 Feb | Read more
Financial malware authors are trying to evade new online banking security systems by returning to more traditional phishing-like credential stealing techniques, according to researchers from security firm Trusteer.
Lucian Constantin | 08 Feb | Read more
Adobe updated Flash Player to patch a pair of zero-day vulnerabilities that hackers were already using to hijack Windows PCs and Macs.
Gregg Keizer | 08 Feb | Read more
Barracuda Networks released a new update on Monday to further mitigate a security issue that could have allowed attackers to gain unauthorized access to some of its network security appliances through backdoor accounts originally intended for remote support. The company apologized to customers for its design decisions that led to this situation and promised to look into additional ways to strengthen the remote support functionality.
Lucian Constantin | 06 Feb | Read more
The developers of many SSL libraries are releasing patches for a vulnerability that could potentially be exploited to recover plaintext information, such as browser authentication cookies, from encrypted communications.
Lucian Constantin | 06 Feb | Read more
ForeScout Technologies and AirWatch have integrated their respective products for network access control and mobile management in a bid to give IT departments better control over devices that employees bring to work.
Mikael Ricknäs | 05 Feb | Read more
Twitter's servers have been breached by "extremely sophisticated" hackers who may have made off with user names and passwords for about 250,000 users, according to the company.Twitter's servers have been breached by "extremely sophisticated" hackers who may have made off with user names and passwords for about 250,000 users, according to the the company.
James Niccolai and Zach Miners | 02 Feb | Read more
Tens of millions of network-enabled devices including routers, printers, media servers, IP cameras, smart TVs and more can be attacked over the Internet because of dangerous flaws in their implementation of the UPnP (Universal Plug and Play) protocol standard, security researchers from Rapid7 said Tuesday in a research paper.
Lucian Constantin | 29 Jan | Read more
A yearlong investigation by government privacy watchdogs in Canada and the Netherlands identified major weaknesses in the way the WhatsApp cellphone messaging application handled the personal information of its users.
Martyn Williams | 28 Jan | Read more