Encryption

Encryption news, analysis, research, how-to, opinion, and video.

Google catches bad digital certificates from Egyptian company

An Egyptian company issued unauthorized digital certificates for Google's services, a major no-no

broken link breaching weakest link connection vulnerability 000004213740

OpenSSL mystery patches due for release Thursday

No details of the vulnerabilities are available yet, but one flaw is rated of 'high' severity

Researchers find same RSA encryption key used 28,000 times

Another look at the impact of the FREAK flaw has turned up some surprising findings

Yahoo puts email encryption plug-in source code up for review

A plug-in that will enable end-to-end encryption of email messages should be ready by year end

Obama administration's encryption concerns meant to start a debate

The U.S. government still supports using encryption but has questions about law enforcement access to data

encryption email

Email security hits the gold standard -- but not via Google or Yahoo

German e-government service gets OpenPGP-based plug-ins, but their impact is unlikely to be widespread

Survey finds faith in Internet trust system fading fast

A Ponemon survey of more than 2,000 IT pros finds increased reliance on and fading faith in Public Key encryption

Microsoft fixes FREAK vulnerability in Patch Tuesday update

Microsoft has issued five critical patches among its 14 updates for for Windows, Internet Explorer, and Office

malware keyboard security bug virus

Apple secures Safari against FREAK attacks

Updates to iOS and OS X fix serious SSL/TLS encryption flaw; other browser makers have yet to fix their products

securiy companies watch

10 security startups to watch in 2015

With IT spending on security on the increase, here are 10 security newcomers hoping to be worthy of corporate customers

security risk thinkstock

Time for all Windows users to FREAK out over encryption bug

Microsoft confirms Windows vulnerable to FREAK attacks, and researchers say Internet Explorer users are also at risk

Time to FREAK out? How to tell if you're vulnerable

Not everyone is vulnerable to the FREAK flaw, researchers disclosed. Here's how to tell if you are

FREAK is another serious security flaw in the Web's encryption

U.S. export restrictions on encryption technology from the 1990s have come back to haunt the modern Web

Is data on your new Lollipop Android device encrypted? Maybe not

Google has relaxed a requirement for manufacturers to turn on encryption by default in Lollipop

Superfish

Mozilla scrubs Superfish certificate from Firefox

Firefox update removes from the browser's repository the self-signed digital certificate implanted by Superfish

Flaw in popular Web analytics plug-in exposes WordPress sites to hacking

Attackers can easily crack cryptographic keys used by the WP-Slimstat plug-in and use them to read information from a site's database

emerging monarch 93153534

Emerging enterprise techs to watch

The latest technologies include quantum computing, gamification, reactive programming, augmented reality, and others

Superfish security flaw also exists in other apps, non-Lenovo systems

A third-party, man-in-the-middle proxy used by Superfish is also used in other apps

ssl secure browser security lock

Lenovo shows us why we need to reinvent Web security

What was Lenovo thinking? We can only hope the company's disastrous decision to install adware on laptops that opens users to attack will inspire the industry to revamp SSL

Load More