A flaw in TeslaCrypt's encryption key storage algorithm - since fixed in version 3.0 - lets the trojan's victims retrieve their files, according to a report in Bleepingcomputer.com.
Sen. Richard Burr (R-NC) and Cindy Cohn, executive director of the Electronic Frontier Foundation, went head to head over the weekend over the issue of encryption.
Let's Encrypt, an initiative of the Internet Security Research Group, has opened its free-of-charge digital certificate store to all.
Texas based CryptoPeak Solutions has sued nearly 70 high-profile companies for using encryption on websites.
By upholding three claims against Coca-Cola, a U.S. District Court in Pennsylvania lets a class action lawsuit stemming from a 2014 breach move forward.
It's time for a dramatic reimagining of how companies approach security.
Apple just recently began encrypting its user iCloud messages that are sent to third-party providers.
The first privacy-driven mobile device is shipping to pre-order customers now and will begin accepting additional orders later this year.
Kaspersky Lab experts who drove around Sao Paolo to assess the security of available Wi-Fi networks found that at least 26 percent have no encryption.
The head of Google's Webspam team would like to see the company reward developers for encryption in an attempt to better protect Web users.
On Friday, the popular coupon site announced that hackers breached its servers.
A survey of 5,000 senior IT managers conducted by market research firm B2B International has found that 35 percent of organizations worldwide don't use encryption to protect data.
Missing information includes ultrasound images, names, birth dates and Social Security numbers of patients who visited two health facilities.
TD Bank has begun notifying customers that it lost two backup computer tapes containing their personal information
The software giant said one of the seven bulletins addresses critical vulnerabilities in Word.
A Romanian researcher has discovered a major password breach on the FTP site belonging to the IEEE. He blames a misconfigured server, as well as the sloppy practice of storing passwords on log files.
Experts said the light patch load addresses issues that aren't considered high-risk, but the monthly update from Microsoft also includes a new requirement that encryption algorithms on RSA certificates meet a certain key length.
Next week's monthly patch batch from Microsoft is not very burdensome, but it includes a new requirement that certificates must contain RSA key lengths of more than 1,024 bits.
A new data-stealing trojan has turned up on the systems of one of Radware's customers, according to researchers at the network security firm.
In a report released this week, the federal Government Accountability Office (GAO) found that the EPA, which just announced a server breach resulting in the personal information compromise of 7,800 people, is falling short in several areas.
Though Gauss's encrypted payload continues to perplex researchers, Kaspersky Lab has unveiled a free tool to detect the malware.
Gauss, which researchers have linked to Flame and Stuxnet, both believed to be built by the U.S. government, functions mainly as a banking trojan -- but it also contains a mystery encrypted payload.
LinkedIn's 2Q earnings call reveals that the company spent between $500,000 to $1 million on forensic work surrounding a recent data compromise.
An unencrypted laptop containing the personal data of roughly 10,000 medical patients was stolen from a hospital vendor employee's home.
The latest version of Mozilla's popular Firefox browser has expanded its security features.
A faulty Yahoo Mail application available on Android devices may be the cause of spam messages that have turned up and appear to be sent from mobile phones.
Another day, another major company is hacked of its members' passwords. This time it is Billabong, the Australia-based surfwear manufacturer, and the credentials reportedly were publicly posted and unencrypted.
Another password compromise has befallen a major company. This time Yahoo confirmed Thursday that its Contributor Network was raided of the usernames and passcodes of 400,000 members.
An unencrypted laptop containing patient data was stolen in late April from the home of a doctor working for The University of Texas M.D. Anderson Cancer Center.
Many of the emails sent to LinkedIn users alerting them of compromised passwords mistakenly were blocked as spam by the recipients.
Sign up to our newsletters
SC Magazine Articles
- CISO salaries and demand for cyber-skills skyrockets, surprising no-one
- Skype targeted by T9000 backdoor trojan
- Student SSNs exposed in University of Central Florida breach
- Malwarebytes says sorry for multiple AV bugs, still unpatched
- Ransomware and POS attackers to zero in on small businesses, retailers
- Obama goes hard on cybersecurity, new CNAP commits funds, resources
- NSA reorg could strengthen defense ops
- Pro-Palestine hacktivist makes good on threat, posts data on FBI and DHS personnel
- Microsoft's February Patch Tuesday: 13 bulletins addressing 36 vulnerabilities
- Draft Investigatory Powers Bill draws fire from Parliamentary committee