ZDNet

PGP encryption won't protect your data. But PURBs can.

Today's security threats have expanded in scope and seriousness. There can now be millions -- or even billions -- of dollars at risk when information security isn't handled properly. Read now Most ...
Threat Post

New RC4 Attack Dramatically Reduces Cookie Decryption Time

A paper, expected to be presented at USENIX, describes new attacks against RC4 that make plaintext recovery times practical and within reach of hackers. Two Belgian security researchers from the ...
Bleeping Computer

Windows 365 exposes Microsoft Azure credentials in plaintext

A security researcher has figured out a way to dump a user's unencrypted plaintext Microsoft Azure credentials from Microsoft's new Windows 365 Cloud PC service using Mimikatz. Mimikatz is an ...
ZDNet

New attack can now decrypt satellite phone calls in "real time"

Chinese researchers have discovered a way to rapidly decrypt satellite phone communications -- within a fraction of a second in some cases. The paper, published this week, expands on previous research ...
CSOonline

EFAIL: Critical PGP and S/MIME bugs could reveal plaintext of encrypted emails

There's currently no fix for the critical flaws in PGP and S/MIME. Users are advised to disable PGP plug-ins and not to use decryption in email clients. EFAIL … it ...
CSOonline

Can obscurity make cryptography better?

I often disagree when the so-called experts talk about security in terms of binary decisions. Managing security risk is always a cost/benefit trade-off compared to the value of the thing being ...
Bleeping Computer

MEGA fixes critical flaws that allowed the decryption of user data

MEGA has released a security update to address a set of severe vulnerabilities that could have exposed user data, even if the data had been stored in encrypted form. MEGA is a New Zealand-based cloud ...