Security Alerts & News
by Tymoteusz A. Góral

History
#949 DLink patches weak crypto in mydlink devices
Browser makers and other tech companies have gone to great pains to beef up weak crypto libraries, in particular those that are exposed to fallback attacks such as POODLE.

Attackers exploiting these vulnerabilities are able to dial back the encryption protecting communication to SSLv2 and SSLv3, for example, forcing servers to fall back to these weaker versions of the protocol should a more secure connection fail. With attacks such as POODLE, an attacker that successfully forces a fallback could steal private keys and decrypt traffic.

As more of these weaker versions of the libraries are replaced, more and more continue to pop up in embedded and connected devices.
Read more
#953 Russian government hackers penetrated DNC, stole opposition research on Trump
#952 RAA ransomware composed entirely of JavaScript
#951 Fix coming for Flash vulnerability under attack
#950 AI, big data and the iPhone: Here's how Apple plans to protect your privacy
#949 DLink patches weak crypto in mydlink devices
#948 Siemens firmware updates patch SIMATIC vulnerabilities
#947 Android ransomware hits Smart TVs
#946 Programmer automates his job for 6 years, finally gets fired, forgets how to code
#945 ATM insert skimmers in action
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12