Security News

Security experts frantically facepalming at stupid design Fundamental flaws in the encryption system used by popular solid-state drives (SSDs) can be exploited by miscreants to easily decrypt...

Internet Engineering Task Force doc examines how to better protect authentication tokens Google and Microsoft engineers have pooled their efforts to propose a protection against what are known as...

Google Instant Apps still needs a lot of work on security Password managers on mobile devices can be tricked by imposter apps into handing over a user's passwords.…

Nerd out over bizarre ultrasonic fluid dynamics Video Fluid dynamics is weird. Physicists have reverse engineered the popping of a bubble and managed to keep it levitated just by using the power of sound.…

Researchers break certificate authorities' domain validation Researchers based in Germany have discovered how to spoof certificates they don't own – even if the certs are protected by the...

Open source trusted execution component expected this fall At some point this fall, a team of researchers from MIT's CSAIL and UC Berkeley's EECS aim to deliver an initial version of an open...

Researchers manipulate gyroscopic controls with ultrasonic attack A group of university researchers have developed a way to remotely control motion-sensing devices using only sound waves.…

Uninvited middlemen may be messing with message Most people's DNS queries – by which browsers and other software resolve domain names into IP addresses – remain unprotected while flowing over the...

Switchzilla issues update for authentication bypass flaw Cisco has pushed out an update for its internetwork operating system (IOS) and IOS XE firmware in advance of a Usenix presentation on...

GCHQ: Yeah, but maybe don't make it too secure, ok? The UK’s National Cyber Security Centre (NCSC) has dispensed advice aimed at securing Ubuntu installs and followed it up with help for Dixons customers.…