Encryption, Internet and Technology - Cyber Security Informer

The Internet is Held Together With Spit & Baling Wire

Krebs on Security

NOVEMBER 26, 2021

A visualization of the Internet made using network routing data. Imagine being able to disconnect or redirect Internet traffic destined for some of the world’s biggest companies — just by spoofing an email. Lumen Technologies Inc. Image: Barrett Lyon, opte.org. Based in Monroe, La.,

Internet

Internet Internet Authentication Telecommunications

G7 Comes Out in Favor of Encryption Backdoors

Schneier on Security

APRIL 23, 2019

Some G7 countries highlight the importance of not prohibiting, limiting, or weakening encryption; There is a weird belief amongst policy makers that hacking an encryption system's key management system is fundamentally different than hacking the system's encryption algorithm. Both are ways of weakening encryption.

Encryption

Encryption Internet Internet Hacking

Policy vs Technology

Schneier on Security

FEBRUARY 21, 2020

Sometime around 1993 or 1994, during the first Crypto Wars, I was part of a group of cryptography experts that went to Washington to advocate for strong encryption. Markey was against forcing encrypted phone providers to implement the NSA's Clipper Chip in their devices, but wanted us to reach a compromise with the FBI regardless.

Technology

Technology Encryption Surveillance Government

Everything Encrypted Will Soon Become Decryptable: We Must Prepare Now For The Era Of Quantum Computers

Joseph Steinberg

DECEMBER 20, 2021

Nearly every piece of data that is presently protected through the use of encryption may become vulnerable to exposure unless we take action soon. While quantum computers already exist, no devices are believed to yet exist that are anywhere near powerful enough to crack modern encryption in short order.

Encryption

Encryption Artificial Intelligence Technology Risk

DEEP TECH NEWS: How ‘attribute-based encryption’ preserves privacy at a fined-grained level

The Last Watchdog

OCTOBER 18, 2023

Enter attribute-based encryption ( ABE ) an advanced type of cryptography that’s now ready for prime time. Customized decryption ABE builds upon digital certificates and the Public Key Infrastructure ( PKI ) that underpins secure communications across the Internet. Here are my takeaways. I’ll keep watch and keep reporting.

Encryption

Encryption Surveillance Internet Internet

Upcoming Speaking Engagements

Schneier on Security

JUNE 14, 2021

This is a current list of where and when I am scheduled to speak: I’ll be part of a European Internet Forum virtual debate on June 17, 2021. The topic is “Decrypting the encryption debate: How to ensure public safety with a privacy-preserving and secure Internet?” Details to come.

Internet

Internet Internet Encryption Technology

Americans urged to use encrypted messaging after large, ongoing cyberattack

Malwarebytes

DECEMBER 5, 2024

Anne Neuberger, the US deputy national security adviser for cyber and emerging technologies stated the “Chinese access was broad in terms of potential access to communications of everyday Americans” but she said the hackers only targeted prominent individuals. To achieve this, a message gets encrypted on your device before it is sent out.

Encryption

Encryption Identity Theft Media Telecommunications

The EARN-IT Act

Schneier on Security

MARCH 13, 2020

Prepare for another attack on encryption in the U.S. It's easy to predict how Attorney General William Barr would use that power: to break encryption. He's said over and over that he thinks the "best practice" is to force encrypted messaging systems to give law enforcement access to our private conversations.

Encryption

Encryption Internet Internet Government

Why Businesses Must Address Risks of Quantum Computing NOW Rather Than Wait Until Problems Arrive

Joseph Steinberg

JULY 20, 2022

There is little doubt that quantum computing will ultimately undermine the security of most of today’s encryption systems , and, thereby, render vulnerable to exposure nearly every piece of data that is presently protected through the use of encryption. Such an attitude is not alarmist – it is reality, whether we like it or not.

Risk

Risk Encryption Government Artificial Intelligence

The Myth of Consumer-Grade Security

Schneier on Security

AUGUST 28, 2019

The Department of Justice wants access to encrypted consumer devices but promises not to infiltrate business products or affect critical infrastructure. Barr repeated a common fallacy about a difference between military-grade encryption and consumer encryption: "After all, we are not talking about protecting the nation's nuclear launch codes.

Computers and Electronics

Computers and Electronics Encryption Internet Internet

MY TAKE: Can Matter 1.0 springboard us from truly smart homes to the Internet of Everything?

The Last Watchdog

NOVEMBER 14, 2022

The technology industry hopes that Matter arises as the lingua franca for the Internet of Things. Matter seeks to achieve this right out of the gate by leveraging and extending the public key infrastructure (PKI) — the tried-and-true authentication and encryption framework that underpins the legacy Internet.

Internet

Internet Internet IoT Manufacturing

GCHQ on Quantum Key Distribution

Schneier on Security

AUGUST 1, 2018

The UK's GCHQ delivers a brutally blunt assessment of quantum key distribution: QKD protocols address only the problem of agreeing keys for encrypting data. QKD technology cannot replace the flexible authentication mechanisms provided by contemporary public key signatures. I agree with them.

Big data

Big data Encryption Authentication IoT

Encryption is on the Rise!

Cisco Security

JANUARY 18, 2023

When the Internet Engineering Task Force (IETF) announced the TLS 1.3 When EMA asked many of the same questions in an updated survey of 204 technology and business leaders toward the end of 2022, they found that nearly all the conclusions in the 2018/2019 report still hold true today. Needless to say, the rollout was not perfect).

Encryption

Encryption Engineering Technology Firewall

MY TAKE: Why monetizing data lakes will require applying ‘attribute-based’ access rules to encryption

The Last Watchdog

JUNE 2, 2021

But it’s coming, in the form of driverless cars, climate-restoring infrastructure and next-gen healthcare technology. They outlined why something called attribute-based encryption, or ABE, has emerged as the basis for a new form of agile cryptography that we will need in order to kick digital transformation into high gear.

Encryption

Encryption Artificial Intelligence IoT Data collection

Firefox Enables DNS over HTTPS

Schneier on Security

FEBRUARY 25, 2020

DNS-over-HTTPS, or DoH, encrypts the request so that it can't be intercepted or hijacked in order to send a user to a malicious site. [.]. Last year, an internet industry group branded Mozilla an "internet villain" for pressing ahead the security feature. But the move is not without controversy.

DNS

DNS Internet Internet Encryption

MY TAKE: The role of semiconductors in bringing the ‘Internet of Everything’ into full fruition

The Last Watchdog

DECEMBER 11, 2022

The Internet of Everything ( IoE ) is on the near horizon. For instance, very visibly over the past decade, Internet of Things ( IoT ) computing devices and sensors have become embedded everywhere. For instance, very visibly over the past decade, Internet of Things ( IoT ) computing devices and sensors have become embedded everywhere.

Internet

Internet Internet Energy and Utilities IoT

Iran-linked DEV-0270 group abuses BitLocker to encrypt victims’ devices

Security Affairs

SEPTEMBER 9, 2022

Iran-linked APT group DEV-0270 (aka Nemesis Kitten) is abusing the BitLocker Windows feature to encrypt victims’ devices. Microsoft Security Threat Intelligence researchers reported that Iran-linked APT group DEV-0270 ( Nemesis Kitten ) has been abusing the BitLocker Windows feature to encrypt victims’ devices.

Encryption

Encryption Internet Internet Firewall

MY TAKE: Fostering Digital Trust – the role of ‘post-quantum crypto’ and ‘crypto agility’ in 2024

The Last Watchdog

DECEMBER 13, 2023

I had the opportunity to sit down with DigiCert’s Jason Sabin , Chief Technology Officer and Avesta Hojjati , Vice President of Engineering to chew this over. And PKI is the best technology we’ve got to get us there. We met at DigiCert Trust Summit 2023. Threat actors are pursuing a “harvest now, decrypt later” strategy, Savin told me.

Encryption

Encryption Technology CISO IoT

Don’t Bother Using The “Device Filter” Security Feature Offered By Your Home Network Router

Joseph Steinberg

MARCH 15, 2021

During the discussion, a colleague in the field mentioned that ideally people should lock their Wi-Fi networks not only with proper encryption, but also with a MAC address filter that allows only specific authorized devices to connect to the network. MAC address filtering is a pain to manage.

Wireless

Wireless Artificial Intelligence Encryption Passwords

“Secure Workloads” – So, what does this cybersecurity catchphrase actually mean?

Joseph Steinberg

MARCH 14, 2022

Workloads (and portions thereof) regularly move across not only the internal organization, but over the Internet, and through one or more third-party cloud environments; there simply is no physical perimeter. Today, however, cloud computing has totally transformed the situation.

Cybersecurity

Cybersecurity Artificial Intelligence Encryption Technology

How to recover files encrypted by Yanlouwang

SecureList

APRIL 18, 2022

Kaspersky experts have found a vulnerability in the Yanluowang encryption algorithm and created a free decryptor to help victims of this ransomware with recovering their files. This is necessary to make files used by other programs available for encryption. The encryption code for big files. Yanluowang description.

Encryption

Encryption Ransomware Backups VPN

Brilliant Advice From Abraham Lincoln About Internet News Reports

Joseph Steinberg

JUNE 30, 2022

Since then, I have seen many Internet memes circulate that appear to convey a similar message. Such a policy is also wise, if not overly generous, with regard to information obtained via the Internet, as there is never 100% certainty as to who crafted a particular piece of data or whether its sources are accurate.

Internet

Internet Internet Artificial Intelligence Marketing

Don’t Wanna Pay Ransom Gangs? Test Your Backups.

Krebs on Security

JULY 19, 2021

. “In a lot of cases, companies do have backups, but they never actually tried to restore their network from backups before, so they have no idea how long it’s going to take,” said Fabian Wosar , chief technology officer at Emsisoft. “That is still somewhat rare,” Wosar said.

Backups

Backups Ransomware Encryption Insurance

Ubiquiti: Change Your Password, Enable 2FA

Krebs on Security

JANUARY 11, 2021

Ubiquiti , a major vendor of cloud-enabled Internet of Things (IoT) devices such as routers, network video recorders, security cameras and access control systems, is urging customers to change their passwords and enable multi-factor authentication. In an email sent to customers today, Ubiquiti Inc.

Passwords

Passwords Authentication Firmware Accountability

How to recover files encrypted by Yanluowang

SecureList

APRIL 18, 2022

Kaspersky experts have found a vulnerability in the Yanluowang encryption algorithm and created a free decryptor to help victims of this ransomware with recovering their files. This is necessary to make files used by other programs available for encryption. The encryption code for big files. Yanluowang description.

Encryption

Encryption Ransomware Backups VPN

Why Your VPN May Not Be As Secure As It Claims

Krebs on Security

MAY 6, 2024

Virtual private networking (VPN) companies market their services as a way to prevent anyone from snooping on your Internet usage. When a device initially tries to connect to a network, it broadcasts a message to the entire local network stating that it is requesting an Internet address. Image: Shutterstock.

VPN

VPN Wireless Internet Internet

Quantum Computing and Cryptography

Schneier on Security

SEPTEMBER 14, 2018

Quantum computing is a new way of computing -- one that could allow humankind to perform computations that are simply impossible using today's computing technologies. It allows for very fast searching, something that would break some of the encryption algorithms we use today. Without the key, reversing the process is more difficult.

Encryption

Encryption Technology Engineering Authentication

Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com

Krebs on Security

JUNE 13, 2020

For the past year, a site called Privnotes.com has been impersonating Privnote.com , a legitimate, free service that offers private, encrypted messages which self-destruct automatically after they are read. And it doesn’t send and receive messages. Creating a message merely generates a link. ” But that’s not the half of it.

Phishing

Phishing Encryption Internet Internet

MY TAKE: ‘Digital trust’ has a huge role to play mitigating cybersecurity threats, going forward

The Last Watchdog

MAY 23, 2022

They require integrity, authentication, trusted identity and encryption. Then the Internet took off and trusting the connection between a user’s device and a web server became of paramount importance. I had the chance to talk about DigiCert’s perspective with Jason Sabin, DigiCert’s Chief Technology Officer. Trust under siege.

Digital transformation

Digital transformation Cybersecurity Computers and Electronics Encryption

MY TAKE: How decentralizing IoT could help save the planet — by driving decarbonization

The Last Watchdog

DECEMBER 17, 2023

The Internet of Things ( IoT ) is on the threshold of ascending to become the Internet of Everything ( IoE.) Yet IoE, at this nascent stage, holds much promise to tilt us towards a utopia where technology helps to resolve our planet’s most intractable problems. Very well said! I’ll keep watch and keep reporting.

IoT

IoT Internet Internet Technology

Are Western Sanctions Undermining Russian Civilians’ Efforts To Obtain Accurate News Via VPNs?

Joseph Steinberg

MAY 9, 2022

Other parties familiar with Russian Internet usage patterns have also estimated that as many as a third of all Russian Internet users now regularly use VPNs. VPN technologies deliver two major benefits to Russian citizens. times as high as it was prior to the war!

VPN

VPN Government Artificial Intelligence Technology

Cybersecurity for the Public Interest

Schneier on Security

MAY 3, 2019

On one side is law enforcement, which wants to be able to break encryption, to access devices and communications of terrorists and criminals. Pervasive surveillance capitalism -- as practiced by the Internet companies that are already spying on everyone -- matters. The Crypto Wars have been waging off-and-on for a quarter-century.

Cybersecurity

Cybersecurity Technology Government Internet

Black Hat Fireside Chat: Replacing VPNs with ZTNA that leverages WWII battlefield tactics

The Last Watchdog

AUGUST 19, 2022

VPNs encrypt data streams and protect endpoints from unauthorized access, essentially by requiring all network communications to flow over a secured pipe. I had the chance at Black Hat 2022 to visit with Rajiv Pimplaskar, CEO at Dispersive , an Alpharetta, GA-based supplier of advanced cloud obfuscation technology.

Small Business

Small Business Technology Software Encryption

Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others

Krebs on Security

MARCH 31, 2020

Ueland said after hearing about the escrow.com hack Monday evening he pulled the domain name system (DNS) records for escrow.com and saw they were pointing to an Internet address in Malaysia — 111.90.149[.]49 The attacker also obtained free encryption certificates for escrow.com from Let’s Encrypt.

Phishing

Phishing DNS Social Engineering Accountability

What Is Encryption? Definition, How it Works, & Examples

eSecurity Planet

DECEMBER 7, 2023

Encryption uses mathematical algorithms to transform and encode data so that only authorized parties can access it. What Encryption Is and How It Relates to Cryptology The science of cryptography studies codes, how to create them, and how to solve them. How Does Encryption Process Data? How Does Encryption Process Data?

Encryption

Encryption Passwords IoT Firewall

Types of Encryption, Methods & Use Cases

eSecurity Planet

DECEMBER 7, 2023

Encryption scrambles data to make it unreadable to those without decryption keys. Proper use of encryption preserves secrecy and radically lowers the potential damage of a successful cybersecurity attack. Encryption algorithm types will provide an overview of the mathematical algorithms used to encrypt data (AES, RSA, etc.),

Encryption

Encryption Passwords Authentication Password Management

Cybersecurity for the Public Interest

Schneier on Security

MARCH 5, 2019

On one side is law enforcement, which wants to be able to break encryption, to access devices and communications of terrorists and criminals. Pervasive surveillance capitalism -- as practiced by the Internet companies that are already spying on everyone -- matters. The Crypto Wars have been waging off-and-on for a quarter-century.

Cybersecurity

Cybersecurity Technology Government Internet

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

The Last Watchdog

APRIL 5, 2022

China has enclosed its national internet servers within what is colloquially called ‘the Great Firewall.’ ’ This firewall even goes as far as to block the latest versions of the encryption service TLS (v1.3) If your staff can log on to the internet to access their emails, so can an attacker.

Hacking

Hacking Passwords Internet Internet

NEW TECH: DigiCert Document Signing Manager leverages PKI to advance electronic signatures

The Last Watchdog

JULY 21, 2021

Related: Why PKI will endure as the Internet’s secure core. And PKI , of course, is the behind-the-scenes authentication and encryption framework on which the Internet is built. Most of us, by now, take electronic signatures for granted. Yet electronic signatures do have their security limitations.

Computers and Electronics

Computers and Electronics Authentication Digital transformation Internet

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

The Last Watchdog

MARCH 17, 2021

Dr. Robert Byer, professor of applied physics at Stanford University, and a leading expert in laser science and technology, for instance, signed on as a distinguished scientist to advance basic research in the use of light waves to streamline quantum computing. More about these paradigm shifters below.

Digital transformation

Digital transformation Encryption Technology Mobile

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

The Last Watchdog

MAY 19, 2022

As every computer security professional knows, if anything is on the Internet, it’s subject to increasingly sophisticated attacks. The best practices for securing your CMS begin with these five low-hanging-fruit steps: •Make sure that your CMS platform’s access control and encryption features are turned on and configured correctly.

Data breaches

Data breaches Encryption Mobile Technology

More Details on Israel Sabotaging Hezbollah Pagers and Walkie-Talkies

Schneier on Security

OCTOBER 15, 2024

But, to ensure maximum damage, the blast could also be triggered by a special two-step procedure required for viewing secure messages that had been encrypted. Technology alone has no ethics: the difference between a patch and an exploit is the method in which a technology is disclosed. In practice, that meant using both hands.

Marketing

Marketing Technology IoT Engineering

The Doghouse: Crown Sterling

Schneier on Security

SEPTEMBER 5, 2019

The company sells "TIME AI," "the world's first dynamic 'non-factor' based quantum AI encryption software," "utilizing multi-dimensional encryption technology, including time, music's infinite variability, artificial intelligence, and most notably mathematical constancies to generate entangled key pairs."

Encryption

Encryption Artificial Intelligence Healthcare Technology

GUEST ESSAY: Securely managing access controls is vital to preserving the privacy of healthcare data

The Last Watchdog

NOVEMBER 8, 2021

M&A invariably creates technology gaps that bad actor’s prey upon. Healthcare organizations are taking advantage of the many benefits of cloud and SaaS, accessing apps and data over the Internet. Patient data exposures. Healthcare data security and privacy is a problem that continues to grow.

Healthcare

Healthcare Technology Architecture IoT

The Internet is Held Together With Spit & Baling Wire

G7 Comes Out in Favor of Encryption Backdoors

Trending Sources

Policy vs Technology

Everything Encrypted Will Soon Become Decryptable: We Must Prepare Now For The Era Of Quantum Computers

DEEP TECH NEWS: How ‘attribute-based encryption’ preserves privacy at a fined-grained level

Upcoming Speaking Engagements

Americans urged to use encrypted messaging after large, ongoing cyberattack

The EARN-IT Act

Why Businesses Must Address Risks of Quantum Computing NOW Rather Than Wait Until Problems Arrive

The Myth of Consumer-Grade Security

MY TAKE: Can Matter 1.0 springboard us from truly smart homes to the Internet of Everything?

GCHQ on Quantum Key Distribution

Encryption is on the Rise!

MY TAKE: Why monetizing data lakes will require applying ‘attribute-based’ access rules to encryption

Firefox Enables DNS over HTTPS

MY TAKE: The role of semiconductors in bringing the ‘Internet of Everything’ into full fruition

Iran-linked DEV-0270 group abuses BitLocker to encrypt victims’ devices

MY TAKE: Fostering Digital Trust – the role of ‘post-quantum crypto’ and ‘crypto agility’ in 2024

Don’t Bother Using The “Device Filter” Security Feature Offered By Your Home Network Router

“Secure Workloads” – So, what does this cybersecurity catchphrase actually mean?

How to recover files encrypted by Yanlouwang

Brilliant Advice From Abraham Lincoln About Internet News Reports

Don’t Wanna Pay Ransom Gangs? Test Your Backups.

Ubiquiti: Change Your Password, Enable 2FA

How to recover files encrypted by Yanluowang

Why Your VPN May Not Be As Secure As It Claims

Quantum Computing and Cryptography

Privnotes.com Is Phishing Bitcoin from Users of Private Messaging Service Privnote.com

MY TAKE: ‘Digital trust’ has a huge role to play mitigating cybersecurity threats, going forward

MY TAKE: How decentralizing IoT could help save the planet — by driving decarbonization

Are Western Sanctions Undermining Russian Civilians’ Efforts To Obtain Accurate News Via VPNs?

Cybersecurity for the Public Interest

Black Hat Fireside Chat: Replacing VPNs with ZTNA that leverages WWII battlefield tactics

Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others

What Is Encryption? Definition, How it Works, & Examples

Types of Encryption, Methods & Use Cases

Cybersecurity for the Public Interest

GUEST ESSAY: NewsCorp hack shows cyber espionage, squelching of press freedom on the rise

NEW TECH: DigiCert Document Signing Manager leverages PKI to advance electronic signatures

MY TAKE: Why ‘basic research’ is so vital to bringing digital transformation to full fruition

GUEST ESSAY: A primer on content management systems (CMS) — and how to secure them

More Details on Israel Sabotaging Hezbollah Pagers and Walkie-Talkies

The Doghouse: Crown Sterling

GUEST ESSAY: Securely managing access controls is vital to preserving the privacy of healthcare data

Stay Connected