No passwords, banking details, but enough info to convincingly phish someone Adobe has pulled offline a public-facing poorly secured Elasticsearch database containing information on 7.5 million Creative Cloud customers.… The Register – Security Secure Hunter Anti -Malware
Tag: time
Good heavens, is it time to patch Cisco kit again? Prime Infrastructure root privileges hole plugged
Do the thing ASAP, you know how it works by now Among a bumper crop of 57 security issues Cisco divulged on Wednesday was a fix for a trio of vulns, one critical, in networks management tool Prime Infrastructure.… The Register – Security Secure Hunter Anti -Malware
Wow, what a lovely early Christmas present for Australians: A crypto-busting super-snoop law passes just in time
Ring in the new year with some of those backdoors, developers Congratulations, Australia: somehow after chaotic scenes in parliament, the government last night managed to secure after-the-bell passage of its encryption-busting eavesdropping legislation.… The Register – Security Secure Hunter Anti -Malware
TLS developers should ditch ‘pseudo constant time’ crypto processing
Fixes for Lucky 13-type bugs could still be vulnerable More than five years after cracks started showing in the Transport Layer Security (TLS) network crypto protocol, the author of the “Lucky 13” attack has poked holes in the fixes that were subsequently deployed.… The Register – Security Secure Hunter Anti -Malware
Boffins want to stop Network Time Protocol’s time-travelling exploits
Ancient protocol’s key vulnerability is fixable Among the many problems that exist in the venerable Network Time Protocol is its vulnerability to timing attacks: turning servers into time-travellers can play all kinds of havoc with important systems.… The Register – Security Secure Hunter Anti -Malware