Linux Cryptography - Page 14 - Results from #260

Discover Cryptography News

Data encryption adds twist to ransomware

data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20100%20100%22%3E%3C/svg%3E

A new version of the well-known police ransomware takes the unusual step of encrypting files on the infected PC, so the malware cannot be easily removed.

LinuxSecurity.com Team
Jan 31, 2013

Rogue Google SSL certificate not used for dishonest purposes, Turktrust says

Turktrust, the Turkish CA (certificate authority) responsible for issuing an intermediate CA certificate that was later used to generate an unauthorized certificate for google.com, claims that the bad Google certificate was not used for dishonest purposes.

LinuxSecurity.com Team
Jan 07, 2013

Breaking Hard-Disk Encryption

The newly announced ElcomSoft Forensic Disk Decryptor can decrypt BitLocker, PGP, and TrueCrypt. And it's only $300. How does it work?

LinuxSecurity.com Team
Dec 31, 2012

China Now Blocking Encryption

The "Great Firewall of China" is now able to detect and block encryption: A number of companies providing "virtual private network" (VPN) services to users in China say the new system is able to "learn, discover and block" the encrypted communications methods used by a number of different VPN systems.

LinuxSecurity.com Team
Dec 20, 2012

Encryption, not restriction, is the key to safe cloud computing

LinuxSecurity.com Team
Nov 12, 2012

How a Google Headhunter

So he wondered if the e-mail might have been spoofed

LinuxSecurity.com Team
Oct 24, 2012

Attacking TrueCrypt

The open source TrueCrypt disk encryption tool is considered the to be the software of choice for systematically encrypting data. It is able to encrypt individual drives, such as USB Flash drives, and even entire hard drives. A small utility called TCHead is, however, able to tackle data encrypted using TrueCrypt.

LinuxSecurity.com Team
Oct 24, 2012

How I Accidentally Helped Compromise The Secret Keys Of High-Security Handcuffs

In the age of freely available modeling software, laser cutters and 3D printers, shapes that must stay secret for security

LinuxSecurity.com Team
Oct 15, 2012

Story of a CIA Burglar

This is a fascinating story of a CIA burglar, who worked for the CIA until he tried to work against the CIA. The fact that he stole code books and keys from foreign embassies makes it extra interesting, and the complete disregard for the Constitution at the end makes it extra scary.

LinuxSecurity.com Team
Oct 09, 2012

NIST crowns next-gen hash algorithm Keccak as official SHA-3

A US government agency has selected cryptographic hash function Keccak as the new official SHA-3 algorithm.

LinuxSecurity.com Team
Oct 03, 2012

Hackers raid Adobe, compromise certificate to sign malware

Hackers have broken into an internal server at Adobe to compromise a digital certificate that allowed them to create at least two files that appear to be legitimately signed by the software maker, but actually contain malware.

LinuxSecurity.com Team
Oct 02, 2012

After hack, Bitcoin exchange comes back online

A small New York-based company that specializes in exchanging Bitcoins is back online after hackers stole about US$250,000 worth of the virtual currency earlier this month.

LinuxSecurity.com Team
Sep 25, 2012

SHA-3 to Be Announced

NIST is about to announce the new hash algorithm that will become SHA-3. This is the result of a six-year competition, and my own Skein is one of the five remaining finalists (out of an initial 64).

LinuxSecurity.com Team
Sep 24, 2012

W3C presents draft of browser Web Cryptography API

The W3C web standards consortium has presented a first Public Working Draft for integrating a Web Cryptography API into browsers. The JavaScript API will provide features such as hashing, key generation and verification, as well as encryption and decryption.

LinuxSecurity.com Team
Sep 17, 2012

New Attack Against Chip-and-Pin Systems

You see, an EMV payment card authenticates itself with a MAC of transaction data, for which the freshly generated component is the unpredictable number (UN). If you can predict it, you can record everything you need from momentary access to a chip card to play it back and impersonate the card at a future date and location. You can as good as clone the chip.

LinuxSecurity.com Team
Sep 11, 2012

Securing a VNC Server on Linux with SSH

If you're new to Linux or Unix, you might prefer using a graphical user interface (GUI) over the command-line interface (CLI), and when remotely connecting you can use the remote desktop protocol and GUI-based Virtual Network Computing (VNC).

LinuxSecurity.com Team
Jun 18, 2012

The md5crypt() author says the algorithm is no longer secure

THE AUTHOR of md5crypt(), which is used to encrypt passwords on some FreeBSD and Linux-based operating systems, has said it is no longer secure despite being recommended as a password hashing function.

LinuxSecurity.com Team
Jun 08, 2012

Flame worm was signed by forged Microsoft certificate

Some components of the Flame spyware worm were signed using forged Microsoft certificates, according to a recent investigation by Microsoft. These unauthorised digital certificates allowed the Flame developers to make the malware appear as if it was actually created and approved by Microsoft.

LinuxSecurity.com Team
Jun 04, 2012

The Best Encrypted Flash Drives

If you're physically transporting data you don't want other people to see, you should be doing it on secure media. And what better than something that hides easily within a pocket? Secure flash drives that are only about the size of a small cigarette lighter feature robust hardware security to make them super secure. You'll pay a premium for the integrated security, but you can't put a price on the peace of mind you get by knowing that your data is locked down.

LinuxSecurity.com Team
May 25, 2012

SSL Pulse starts beating

The Trustworthy Internet Movement has launched SSL Pulse, a "real time" dashboard as part of an initiative to improve the quality of SSL implementations in use on the web. The Trustworthy Internet Movement (TIM) is a non-profit launched by the chairman and CEO of Qualys, Philippe Courtot, in February at the RSA conference. Its next step, it has decided, is to create a TIM SSL Taskforce to look at SSL governance and implementation across the internet.

LinuxSecurity.com Team
May 02, 2012

Linux Cryptography - Page 14

How Passkey Solutions Enhance Open-Source Security

Abyss Locker Ransomware Targets Linux & Windows Users

Linux Foundation Joins Post-Quantum Cryptography Alliance