Latest news

Cloudflare Says No Evidence Cloudbleed Bug Was Exploited
Hacking

Cloudflare Says No Evidence Cloudbleed Bug Was Exploited

After further analysis of the memory leak bug disclosed last week, Cloudflare officials say they haven’t found any instances of customer passwords, credit card data, or health records leaking while the vulnerability was exposed. The vulnerability, now known as Cloudbleed, has joined the pantheon of Internet-scale bugs to emerge in […]

On the Wire Podcast: Gary McGraw
Podcast

On the Wire Podcast: Gary McGraw

There probably isn’t anyone more closely associated with the field of software security than Gary McGraw. He’s been thinking, writing, speaking, and studying the practice for more than two decades and has helped some of the world’s largest organizations develop and improve software security programs. In this episode, Dennis Fisher […]

SHA-1 Collision Spells the End for Old Algorithm
Hacking, Privacy

SHA-1 Collision Spells the End for Old Algorithm

Engineers at Google have created the first SHA-1 collision, an achievement that should lay to rest any remaining doubts about the practical security of the hash function. Cryptographers and security researchers have been warning about weaknesses in SHA-1 for several years, saying that modern computing power would soon put a […]

Google Releases Upspin Secure File-Sharing Tool
Privacy

Google Releases Upspin Secure File-Sharing Tool

Google has published a new open-source tool called Upspin that enables users to share files and other content securely across networks without the need for uploading and downloading. Unlike existing systems such as Dropbox or Google Drive, Upspin isn’t really a separate file storage and retrieval service. Instead, Google describes […]