Security News > 2017 > March > JSON Libraries Patched Against Invalid Curve Crypto Attack (Threatpost)

JSON Libraries Patched Against Invalid Curve Crypto Attack (Threatpost)

2017-03-15 15:46

JSON libraries using the JWE specification to create, sign and encrypt access tokens have been patched against an attack that allows for the recovery of a private key.

News URL

http://threatpost.com/json-libraries-patched-against-invalid-curve-crypto-attack/124336/

#attack #crypto #json #libraries #threatpost

Related news

New Web3 attack exploits transaction simulations to steal crypto (source)
North Korea targets crypto developers via NPM supply chain attack (source)
Bybit Confirms Record-Breaking $1.46 Billion Crypto Heist in Sophisticated Cold Wallet Attack (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.