Security News > 2017 > March > JSON Libraries Patched Against Invalid Curve Crypto Attack (Threatpost)

2017-03-15 15:46
JSON libraries using the JWE specification to create, sign and encrypt access tokens have been patched against an attack that allows for the recovery of a private key.
News URL
http://threatpost.com/json-libraries-patched-against-invalid-curve-crypto-attack/124336/
Related news
- North Korea targets crypto developers via NPM supply chain attack (source)
- Bybit Confirms Record-Breaking $1.5 Billion Crypto Heist in Sophisticated Cold Wallet Attack (source)
- GitVenom attacks abuse hundreds of GitHub repos to steal crypto (source)
- North Korean hackers adopt ClickFix attacks to target crypto firms (source)