UK seeks end to end-to-end encryption

It could put an end to end-to-end encryption in services such as WhatsApp: The U.K. government wants telecommunications providers to help it tap their customers’ communications, removing any encryption the provider applied. The government’s desires are set out in a draft of the regulations obtained by Open Rights Group (ORG), which campaigns for digital civil rights. “These powers could be directed at companies like WhatsApp to limit their encryption. The…

May 5, 2017
Read More >>

State-of-the-art multifactor authentication (MFA) technologies

Enterprises authenticate users based on their knowledge, possession, or inherence of some evidence that they are the party with the given right of access. Some experts see the context of the user’s authentication such as the time, their network IP and device, and their location as the fourth factor of authentication. Stephen Cobb, senior security researcher at ESET says you can assure greater security with each additional factor of authentication…

April 27, 2017
Read More >>

DNS record will help prevent unauthorized SSL certificates

In a few months, publicly trusted certificate authorities will have to start honoring a special Domain Name System (DNS) record that allows domain owners to specify who is allowed to issue SSL certificates for their domains. The Certification Authority Authorization (CAA) DNS record became a standard in 2013 but didn’t have much of a real-world impact because certificate authorities (CAs) were under no obligation to conform to them. The record allows a…

April 11, 2017
Read More >>

Get 72% off NordVPN Virtual Private Network Service For a Limited Time – Deal Alert

NordVPN gives you a private and fast path through the public Internet. All of your data is protected every step of the way using revolutionary 2048-bit SSL encryption even a supercomputer can’t crack. Access Hulu, Netflix, BBC, ITV, Sky, RaiTV and much more from anywhere in the world. Unmetered access for 6 simultaneous devices. You’re sure to find dozens of good uses for a VPN. Take advantage of the current…

April 8, 2017
Read More >>

A free decryption tool is now available for all Bart ransomware versions

Users who have had their files encrypted by any version of the Bart ransomware program are in luck: Antivirus vendor Bitdefender has just released a free decryption tool. The Bart ransomware appeared back in June and stood out because it locked victims’ files inside ZIP archives encrypted with AES (Advanced Encryption Standard). Unlike other ransomware programs that used RSA public-key cryptography and relied on a command-and-control server to generate key…

April 4, 2017
Read More >>

Top 5 email security best practices to prevent malware distribution

A trusted channel Image by Thinkstock Email is a critical enterprise communication tool synonymous with sending important documents quickly and efficiently between employees, managers, HR, finance, sales, legal, customers, supply chain and more. That said, organizations often don’t understand that the file types used every day to share important information – standard files like Word docs, Excel spreadsheets and PDFs – are also the most common attack vectors widely used…

April 3, 2017
Read More >>

IDG Contributor Network: Swearing Trojan malware in China heralds things to come in the U.S.

National politics being what they are, the news in our part of the world is rather narrow and self-absorbed these days. Thus, the media here wasn’t too impressed by a story out of China a few days ago about a piece of malware called Swearing Trojan. Named for some Chinese profanity embedded in comments in the code, Swearing Trojan is big news in China, where it continues to unleash havoc,…

March 29, 2017
Read More >>

LastPass is scrambling to fix another serious vulnerability

For the second time in two weeks developers of the popular LastPass password manager are working to fix a serious vulnerability that could allow malicious websites to steal user passwords or infect computers with malware. Like the LastPass flaws patched last week, the new issue was discovered and reported to LastPass by Tavis Ormandy, a researcher with Google’s Project Zero team. The researcher revealed the vulnerability’s existence in a message on…

March 28, 2017
Read More >>