Latest news

New Sweet32 Attack Hits Blowfish, 3DES
Authentication, Privacy

New Sweet32 Attack Hits Blowfish, 3DES

Researchers have developed a practical, relatively fast attack on 64-bit block ciphers that can allow attackers to recover authentication cookies as well as other credentials from some HTTPS-protected sessions. The attack, known as SWEET32, specifically affected TripleDES and Blowfish, two of the more popular such ciphers, and their implementations in […]

Google to Update Android Nougat Quarterly
Device Security

Google to Update Android Nougat Quarterly

As Google begins rolling out the next version of Android, called Nougat, to users this week, the company already is planning a new strategy for providing updates to the operating system more frequently. Traditionally, Google has updated Android essentially once a year, putting a new major release about every 12 […]

Critical RNG Flaw Fixed in GnuPG
Authentication, Privacy

Critical RNG Flaw Fixed in GnuPG

Researchers have uncovered a critical vulnerability in the GnuPG and Libgcrypt encryption apps that has been around since 1998 and allows an attacker to predict output from the software’s random number generator under some conditions. The vulnerability was discovered by a team from Karlsruhe Institute of Technology in Germany, and […]

Juniper Investigating NetScreen Exploit
Device Security, Hacking

Juniper Investigating NetScreen Exploit

Following Cisco’s lead, Juniper is now investigating the effects of the Shadow Brokers release on its products, specifically an exploit that affects the company’s NetScreen firewalls. The dump of tools, exploits, and data stolen from a hacking team called the Equation Group–which is believed to be affiliated with the NSA–included […]