article thumbnail

New Attack on VPNs

Schneier on Security

TunnelVision, as the researchers have named their attack, largely negates the entire purpose and selling point of VPNs, which is to encapsulate incoming and outgoing Internet traffic in an encrypted tunnel and to cloak the user’s IP address.

VPN 323
article thumbnail

RSAC Fireside Chat: A breakthrough in securing cloud collaboration — decentralized key storage

The Last Watchdog

Back in 2002, when I was a reporter at USA Today , I had to reach for a keychain fob to retrieve a single-use passcode to connect remotely to the paper’s publishing system. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW How much traction will it get?

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Why Your VPN May Not Be As Secure As It Claims

Krebs on Security

Virtual private networking (VPN) companies market their services as a way to prevent anyone from snooping on your Internet usage. When a device initially tries to connect to a network, it broadcasts a message to the entire local network stating that it is requesting an Internet address. Image: Shutterstock.

VPN 306
article thumbnail

VMware Flaw a Vector in SolarWinds Breach?

Krebs on Security

The NSA said that in order to exploit this particular flaw, hackers would already need to have access to a vulnerable VMware device’s management interface — i.e., they would need to be on the target’s internal network (provided the vulnerable VMware interface was not accessible from the Internet).

Software 362
article thumbnail

RSAC Fireside Chat: AT&T, WillJam Ventures partner to launch new MSSP — LevelBlue

The Last Watchdog

Founded in 2002 by Bob McCullen , its portfolio includes Viking Cloud , a supplier of PCI data security compliance solutions, and GoSecure , recognized for its Managed Extended Detection and Response (MXDR) services. Acohido is dedicated to fostering public awareness about how to make the Internet as private and secure as it ought to be. (LW

Marketing 130
article thumbnail

World Password Day is Dead. Long Live World Password Day!

The State of Security

In 2002 I sat in a local bookstore in Jackson Hole, WY that offered a few Internet-connected computers for hourly use. After chatting with the owner and petting the resident store dog, I took a few guesses at the password protecting these computers. It took me maybe 10 attempts. The post World Password Day is Dead.

article thumbnail

BOOK REVIEW: ‘Security Yearbook’ preserves cybersecurity history — highlights tectonic shift

The Last Watchdog

Related: The role of PKI is securing digital transformation That was in 2002. Then along came cloud computing and the Internet of Things. With everyone connecting to the Internet to interact, new security regimes, like Zero Trust and Edge Security are gaining traction. Much has changed; much has remained the same.