Security News > 2017 > October > VPN, Web Sessions Exposed to DUHK Crypto Attack

VPN, Web Sessions Exposed to DUHK Crypto Attack

2017-10-24 15:13

A vulnerability in the outdated ANSI X9.31 random number generator (RNG) can allow attackers to recover encryption keys and read data passing through VPN connections and encrypted web browser sessions, researchers warned. read more

News URL

http://feedproxy.google.com/~r/Securityweek/~3/4qfsdzevz9k/vpn-web-sessions-exposed-duhk-crypto-attack

#attack #crypto #VPN #WEB

Related news

New Web3 attack exploits transaction simulations to steal crypto (source)
PlushDaemon APT Targets South Korean VPN Provider in Supply Chain Attack (source)
IPany VPN breached in supply-chain attack to push custom malware (source)
Massive brute force attack uses 2.8 million IPs to target VPN devices (source)
North Korea targets crypto developers via NPM supply chain attack (source)
SonicWall firewalls now under attack: Patch ASAP or risk intrusion via your SSL VPN (source)
Bybit Confirms Record-Breaking $1.46 Billion Crypto Heist in Sophisticated Cold Wallet Attack (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.