Security News > 2017 > October > VPN, Web Sessions Exposed to DUHK Crypto Attack

VPN, Web Sessions Exposed to DUHK Crypto Attack

2017-10-24 15:13

A vulnerability in the outdated ANSI X9.31 random number generator (RNG) can allow attackers to recover encryption keys and read data passing through VPN connections and encrypted web browser sessions, researchers warned. read more

News URL

http://feedproxy.google.com/~r/Securityweek/~3/4qfsdzevz9k/vpn-web-sessions-exposed-duhk-crypto-attack

#attack #crypto #VPN #WEB

Related news

Crypto-apocalypse soon? Chinese researchers find a potential quantum attack on classical encryption (source)
SolarWinds Web Help Desk flaw is now exploited in attacks (source)
Cybercriminals Exploiting Docker API Servers for SRBMiner Crypto Mining Attacks (source)
Cisco fixes VPN DoS flaw discovered in password spray attacks (source)
Notorious Hacker Group TeamTNT Launches New Cloud Attacks for Crypto Mining (source)
New Cisco ASA and FTD features block VPN brute-force password attacks (source)
LottieFiles hit in npm supply chain attack targeting users' crypto (source)
LottieFiles hacked in supply chain attack to steal users’ crypto (source)
LottieFiles supply chain attack exposes users to malicious crypto wallet drainer (source)
Dark web crypto laundering kingpin sentenced to 12.5 years in prison (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.