eSecurity Planet

JUNE 24, 2021

The increasing mobility of data, as it ping-pongs between clouds, data centers and the edge, has made it an easier target of cybercrime groups, which has put a premium on the encryption of that data in recent years. Since then, interest in fully homomorphic encryption (FHE) has increased, largely paralleling the rise of cloud computing.

Encryption 85

Encryption Cloud Libraries Privacy 85

eSecurity Planet

JANUARY 8, 2024

The new year brought few new vulnerabilities, and only Ivanti Endpoint Manager (EPM) and Kyber, the quantum resistant encryption algorithm, publicized new vulnerabilities or fixes. and older of the Perl Spreadsheet::ParseExcel library ( CVE-2023-7101 ) contain a RCE vulnerability exploited by Chinese hackers, as noted on December 24th.

Encryption 103

Encryption Libraries Cybersecurity Communications 103

IBM Big Data Hub

APRIL 11, 2024

To foster innovation in fully homomorphic encryption (FHE), IBM® researchers have begun publishing challenges on the FHERMA platform for FHE challenges launched in late 2023 by the Fair Math and the OpenFHE community. FHE: A new frontier in technology Fully homomorphic encryption is a groundbreaking technology with immense potential.

Encryption 85

Encryption Libraries Blockchain Privacy 85

The Last Watchdog

AUGUST 8, 2023

8, 2023 – SandboxAQ today announced Sandwich, an open source framework and meta-library of cryptographic algorithms that simplifies modern cryptography management. SandboxAQ recently launched its Security Suite which handles discovery and remediation of encryption vulnerabilities. Palo Alto, Calif., A broad range of U.S.

Libraries 151

Libraries Encryption Access Cybersecurity 151

Thales Cloud Protection & Licensing

APRIL 18, 2018

One of the long standing challenges with security applications that involve data encryption has been key management. Vormetric Application Encryption. Today’s Vormetric Application Encryption provides a library that provides the PKCS #11 interface as a dynamically loadable library (.DLL) Where to get good keys?

Encryption 63

Encryption Libraries Authentication Communications 63

Security Affairs

JULY 1, 2023

This Linux version is 64-bit and also uses the Boost library, it uses the Crypto++ library instead of Windows CryptoAPI. “During the run, the ransomware generates a symmetric encryption key using CryptGenRandom() , which is the random number generator implemented by Windows CryptoAPI. . Bernstein’s implementation ).”

Ransomware 98

Ransomware Encryption Libraries Education 98

Schneier on Security

APRIL 2, 2024

Anyone in possession of a predetermined encryption key could stash any code of their choice in an SSH login certificate, upload it, and execute it on the backdoored device. In theory, the code could allow for just about anything, including stealing encryption keys or installing malware.

Encryption 121

Encryption Libraries Cybersecurity IT 121

Security Affairs

MARCH 31, 2024

The Linux version of DinodasRAT uses Pidgin’s libqq qq_crypt library functions for encryption and decryption of data. The library uses the Tiny Encryption Algorithm ( TEA ) in CBC mode to cipher and decipher the data. 0x18 DealExShell Execute shell command and send its output to C2. 0x28 DealLocalProxy Send “ok”.

Libraries 127

Libraries Encryption Communications Government 127

Security Affairs

JUNE 12, 2019

Tavis Ormandy, a white hat hacker Google Project Zero announced to have found a zero-day flaw in the SymCrypt cryptographic library of Microsoft’s operating system. The flaw could be exploited by malicious programs trigger a denial of service condition by interrupting the encryption service for other programs. Pierluigi Paganini.

Libraries 65

Libraries Encryption Security IT 65

Security Affairs

NOVEMBER 10, 2019

The Apple Mail app available on macOS stores leave s a portion of users encrypted emails in plaintext in a database called snippets. The Apple expert Bob Gendler discovered that the Apple Mail app available on macOS stores leaves a portion of users encrypted emails in plaintext in a database called snippets. ” continues the post.

Encryption 52

Encryption Libraries Data collection Privacy 52

Security Affairs

JUNE 15, 2022

Hertzbleed attack: Researchers discovered a new vulnerability in modern Intel and AMD chips that could allow attackers to steal encryption keys. Intel provided guidance to mitigate the attack by hardening their libraries and applications. “Hertzbleed is a new family of side-channel attacks: frequency side channels.

Encryption 65

Encryption Libraries Security Cybersecurity 65

Security Affairs

DECEMBER 6, 2022

The encryption and decryption are not robust and the ransomware lack features like Windows Shadow Copy removal, File unlocking for a more thorough impact, Anti-analysis, and Defensive evasion (AMSI bypass, disabling event logging, etc.). At this point in this ransomware, the encryption process has already finished.

Ransomware 117

Ransomware Encryption Libraries IT 117

Security Affairs

JUNE 17, 2022

Experts discovered a feature in Microsoft 365 suite that could be abused to encrypt files stored on SharePoint and OneDrive and target cloud infrastructure. Researchers from Proofpoint reported that a feature in the in Microsoft 365 suite could be abused to encrypt files stored on SharePoint and OneDrive. ” continues the report.

Libraries 84

Libraries Encryption Ransomware Cloud 84

eSecurity Planet

JANUARY 5, 2024

Strong encryption protects data securely from unauthorized access, but the specific algorithms that qualify as strong encryption change over time as computing power increases and researchers develop new ways to break encryption. What Makes an Encryption Algorithm Strong?

Encryption 109

Encryption Passwords Libraries Security 109

Security Affairs

JULY 7, 2022

The development team behind the OpenSSL project fixed a high-severity bug in the library that could potentially lead to remote code execution. The maintainers of the OpenSSL project fixed a high-severity heap memory corruption issue , tracked as CVE-2022-2274 , affecting the popular library. SecurityAffairs – hacking, encryption).

Libraries 107

Libraries Encryption Communications Security 107

Dark Reading

JUNE 16, 2022

SharePoint and OneDrive libraries can be encrypted in ransomware attack, researchers say.

Ransomware 99

Ransomware Libraries Encryption 99

Security Affairs

NOVEMBER 2, 2022

The OpenSSL project fixed two high-severity flaws in its cryptography library that can trigger a DoS condition or achieve remote code execution. The OpenSSL project has issued security updates to address a couple of high-severity vulnerabilities, tracked as CVE-2022-3602 and CVE-2022-3786 , in its cryptography library. of the library.

Libraries 98

Libraries Encryption Authentication Communications 98

Security Affairs

JULY 24, 2023

OpenSSH (Open Secure Shell) is a set of open-source tools and utilities that provide secure encrypted communication over a network. The vulnerability can be exploited only if certain libraries are installed on systems running the vulnerable versions and the SSH authentication agent is forwarded to an attacker-controlled system.

Libraries 87

Libraries Authentication Encryption Communications 87

Security Affairs

JANUARY 17, 2022

Some variants of the ransomware append the English name of the target company to the filenames of the encrypted files. “The SFile ransomware uses the Mbed TLS library, RSA-2048 and AES-256 algorithms for file encryption. as the suffix name. . ” reported The Record. . ” reported The Record. Pierluigi Paganini.

Ransomware 137

Ransomware Encryption Libraries Communications 137

Schneier on Security

OCTOBER 22, 2019

NIST has completed a study -- it was published last year, but I just saw it recently -- calculating the costs and benefits of the Advanced Encryption Standard. And I certainly agree that the benefits of a standardized encryption algorithm that we all trust and use outweigh the cost by orders of magnitude.

Encryption 47

Encryption Agriculture Retail Manufacturing 47

Security Affairs

JANUARY 6, 2023

One of the most important capabilities of ransomware is the capability of targeting specific files to encrypt. FileCoder and MacRansom use the Linux find utility to search for selected files to encrypt. . However, these same ransomware families differ in encryption logic. ” reads the analysis published by Microsoft.

Ransomware 86

Ransomware Encryption Libraries Security 86

Security Affairs

JULY 1, 2020

Security experts have uncovered a new piece of ransomware dubbed EvilQuest designed to encrypt macOS systems, it is also able to install additional payloads and potentially take over the infected machine. Once encrypted the file on the infected host, a popup is displayed to the victim, informing it that its files have been encrypted.

Ransomware 111

Ransomware Libraries Encryption Communications 111

eSecurity Planet

AUGUST 8, 2023

Is Falling Behind on Encryption Standards – And That’s a Global Problem Changing Algorithms Without Changing Code The Sandwich framework lets developers build their own “sandwich” of protocols and implementations they want available at runtime, which are compiled as a Sandwich object. Also read: The U.S.

Encryption 79

Encryption Cybersecurity Libraries Access 79

Schneier on Security

MARCH 16, 2022

Basically, the SafeZone library doesn’t sufficiently randomize the two prime numbers it used to generate RSA keys. Böck also found four vulnerable PGP keys, typically used to encrypt email, on SKS PGP key servers. They’re too close to each other, which makes them vulnerable to recovery.

Manufacturing 104

Manufacturing Libraries Encryption IT 104

The Guardian Data Protection

JANUARY 10, 2022

Sensitive data in the ark has been drawn from crime reports, hacked from encrypted phone services and sampled from asylum seekers never involved in any crime.

Personal data 117

Personal data Big data Libraries Encryption 117

Thales Cloud Protection & Licensing

FEBRUARY 19, 2024

To counter HNDL, migrating critical systems to Post-Quantum Cryptography (PQC) provides encryption and authentication methods resistant to an attack from a cryptographically relevant quantum computer (CRQC). Encryption Thales | Cloud Protection & Licensing Solutions More About This Author > Schema In the U.S.,

Analytics 71

Analytics Encryption Compliance Cloud 71

eSecurity Planet

OCTOBER 18, 2021

It matches reported vulnerabilities to the open source libraries in code, reducing the number of alerts. VeraCrypt is free, open source disk encryption software for Windows, Mac OSX and Linux. It creates a virtual encrypted disk within a file and mounts it as a real disk. Encryption is automatic and is done in real time.

Security 133

Security Encryption Compliance Libraries 133

Security Affairs

JANUARY 11, 2022

Another gang, Night Sky ransomware operation, started exploiting the Log4Shell vulnerability in the Log4j library to gain access to VMware Horizon systems. The Night Sky ransomware operation started exploiting the Log4Shell flaw (CVE-2021-44228) in the Log4j library to gain access to VMware Horizon systems.

Ransomware 92

Ransomware Libraries File names Encryption 92

Security Affairs

OCTOBER 13, 2023

The CurKeep payload is very small, it is 10kb in size, contains 26 functions and is not statically compiled with any library. shell – Sends the computer name in a JSON format encrypted with simple XOR encryption and base64 encoded to the C2. report – CurKeep collects information about the infected machine.

Government 95

Government IT Encryption Libraries 95

Security Affairs

OCTOBER 18, 2022

Spyder Loader loads AES-encrypted blobs to create the wlbsctrl.dll which acts as a next-stage loader that executes the content. Like the sample analyzed by Cyberreason, the Spyder Loader sample analyzed by Symantec uses the CryptoPP C++ library.

File names 101

File names Encryption Manufacturing Libraries 101

Security Affairs

DECEMBER 31, 2021

CVE-2021-45732 : Configuration Manipulation via Hardcoded Encryption Routines. Researchers discovered multiple instances of known vulnerable jQuery libraries (such as jquery 1.4.2), for this reason, they are urging to update them to the latest available versions. CVE-2021-23147 : Insufficient UART Protection Mechanisms.

Communications 116

Communications Libraries Encryption Authentication 116

Security Affairs

OCTOBER 23, 2018

The flaw affects the process implemented by the Signal Desktop application to encrypt locally stored messages. Signal Desktop application leverages an encrypted SQLite database called db.sqlite to store the user’s messages. The encryption key is used each time Signal Desktop application accessed the database.

Encryption 85

Encryption Passwords Libraries Cybersecurity 85

Security Affairs

AUGUST 24, 2022

Tox is a peer-to-peer serverless instant messaging services that uses NaCl for encryption and decryption. The binary is written in C and has only statically linked the c-toxcore library. Threat actors are using the Tox peer-to-peer instant messaging service as a command-and-control server, Uptycs researchers reported.

Communications 114

Communications Ransomware Libraries Encryption 114

eSecurity Planet

MAY 10, 2022

The system uses DLL (Dynamic Link Library) files to store some resources the application needs and will load automatically. If it does not find one, the encrypted shell code is written in 8KB chunks in the event logs. The dropper then looks for logs with a specific category (0x4142) and with the KMS as a source.

Encryption 102

Encryption Libraries Communications Security 102

Security Affairs

APRIL 30, 2020

The malware also downloads the Command-and-control (C2) URLs, C2 communication is encrypted using Base64, RC4, and Curve25519. . Most recent versions of EventBot also include a ChaCha20 library that can improve performance, but it is not currently being used, a circumstance that suggests authors are actively working to optimize EventBot. .

Financial Services 101

Financial Services Libraries Encryption Authentication 101

Security Affairs

FEBRUARY 16, 2021

The “ rlottie ” folder caught their attention, it was the folder used for the Samsung native library for playing Lottie animations, originally created by Airbnb. ” The experts used a fuzzy approach to test the Samsung’s C++ library rlottie to parse Lottie animations and triaging the crashes.

Access 112

Access Libraries Encryption Security 112

Security Affairs

SEPTEMBER 24, 2023

“Notably, the only component on system’s disk as a file is the initial component, which is in the form of a Dynamic Link Library (DLL). The remaining components are encrypted and stored within a binary registry value.” .” reads the analysis published by ESET.

Libraries 108

Libraries Encryption Security IT 108