Security News > 2017 > March > JSON Libraries Patched Against Invalid Curve Crypto Attack (Threatpost)

JSON Libraries Patched Against Invalid Curve Crypto Attack (Threatpost)

2017-03-15 15:46

JSON libraries using the JWE specification to create, sign and encrypt access tokens have been patched against an attack that allows for the recovery of a private key.

News URL

http://threatpost.com/json-libraries-patched-against-invalid-curve-crypto-attack/124336/

#attack #crypto #json #libraries #threatpost

Related news

North Korea targets crypto developers via NPM supply chain attack (source)
Bybit Confirms Record-Breaking $1.5 Billion Crypto Heist in Sophisticated Cold Wallet Attack (source)
GitVenom attacks abuse hundreds of GitHub repos to steal crypto (source)
North Korean hackers adopt ClickFix attacks to target crypto firms (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.