From 1 September 2020, Safari will no longer trust SSL/TLS certificates with more than a year on the clock.
Tag Archives: Cryptography
S2 Ep27: Bluetooth holes, dodgy Chrome extensions and forgotten passwords – Naked Security Podcast
New episode – listen now!
OpenSSH eases admin hassles with FIDO U2F token support
OpenSSH version 8.2 is out and the big news is that the world’s most popular remote management software now supports authentication using any FIDO (Fast Identity Online) U2F hardware token.
Malware and HTTPS – a growing love affair
HTTPS web encryption – blessing or curse? A new SophosLabs report looks at how much the crooks love TLS.
Data about inmates and jail staff spilled by leaky prison app
A web-mapping project came across detainees’ prescriptions and other PII that could be used by identity thieves to victimize prisoners.
Facebook encrypted messaging will ‘create hiding places for child abuse’
Child safety groups penned an open letter to Facebook, urging a delay on encrypted messaging until sufficient safeguards are in place.
Google launches open-source security key project, OpenSK
OpenSK is a piece of firmware that you can install on a USB dongle of your own, turning it into a usable FIDO or U2F key.
Apple allegedly made nice with FBI by dropping iCloud encryption plan
Sources told Reuters that Apple may have been convinced by arguments made during the legal fight over cracking the San Bernardino iPhone.
NSA and Github ‘rickrolled’ using Windows CryptoAPI bug
We said, “Assume that someone will find out how to do it pretty soon,” and that’s exactly what happened.
Apple says no to unlocking shooter’s phone; AG and Trump lash back
Attorney General Barr and President Trump are demanding Apple unlock the mass shooter’s iPhone. Apple replies: You can’t break just 1 phone.