Developers at Uber have unveiled a new module to help users enable the continuous re-authentication of SSH keys.
Tag Archives: Cryptography
Threatpost News Wrap, February 3, 2017
Mike Mimoso and Chris Brook recap the news of the week, including a Microsoft SMB zero day, the latest Netgear router vulnerability, and a new HTTPS milestone.
Google Adds Security Key Enforcement to G Suite Apps, Hosted S/MIME to Gmail
Google pumped more life into the use of physical keys as a second form of authentication when it added Security Key enforcement support to G Suite.
HTTPS Hits 50 Percent Traffic Milestone
This week HTTPS hit a huge milestone. According to a two-week survey of telemetry data from the Mozilla Firefox browser, 50 percent of page loads used HTTPS.
Latest Ubuntu Update Includes OpenSSL Fixes
Ubuntu users are encouraged to update their operating systems to the latest OpenSSL package versions to address a collection of vulnerabilities.
Many Android VPN Apps Breaking Privacy Promises
Academics studying 283 Android VPN apps quantified a number of problems associated with native platform support for VPN clients through the BIND_VPN_SERVICE.
Threatpost News Wrap, January 27, 2017
The Star Wars Twitter botnet, the return of Lavabit, a critical Cisco Webex flaw, and the St. Louis Library ransomware story are discussed.
Heartbleed Persists on 200,000 Servers, Devices
Almost 200,000 servers are still vulnerable to Heartbleed, the OpenSSL vulnerability patched nearly three years ago.
SHA-1 End Times Have Arrived
Things are about to get a lot safer on the internet with SHA-2, but there is plenty of work still to be done when it comes to SHA-1 deprecation.
Buggy Domain Validation Forces GoDaddy to Revoke Certs
A bug in GoDaddy’s domain validation process forced the registrar to revoke SSL certificates and reissue certs for more than 6,000 customers.