By Chris Foxx NatWest bank says it will enhance the security of its website, following a spat with security experts who spotted a vulnerability. Several researchers had asked why some…
Tag: HTTPS
IoT Crypto Key Reuse Soars 40%
Practice makes it easier for attackers to launch Man in the Middle attacks. By Phil Muncaster The number of internet-connected smart devices using non-unique private keys for HTTPS server certificates…
More than 11 million HTTPS websites imperiled by new decryption attack
Low-cost DROWN attack decrypts data in hours, works against TLS e-mail servers, too. by Dan Goodin More than 11 million websites and e-mail services protected by the transport layer security…
Five Common Ways Users Can Expose Your Business
Your system is secure, but what about your staff and users? By Chris Holden, for Cysec-Rco Ltd. It is accepted that security is not just about having adequate firewalls, anti-malware,…
Malvertising Campaign Rages Undetected For 3 Weeks
Instead of injecting nasty code into ads, attackers pose as legitimate advertisers and manipulate ad networks’ chain of trust. Sara Peters Although malvertising campaigns are usually detected after a few…
Travel apps riddled with security flaws
The biggest problem was a lack of encryption for data at rest By Maria Korolov The top 10 travel apps in the iOS and Android app stores are all riddled…