Security News

MountLocker ransomware gets slimmer, now encrypts fewer files
2020-12-11 15:30

MountLocker ransomware received an update recently that cut its size by half but preserves a weakness that could potentially allow learning the random key used to encrypt files. In a technical analysis published today, the BlackBerry Research and Intelligence Team notes that the new MountLocker variant comes with a compilation timestamp from November 6.

Linux servers: How to encrypt files with gocryptfs
2020-11-19 18:06

Looking for an easy to use encryption tool to protect data on your Linux servers? Jack Wallen shows you how to install and use gocryptfs to serve that very purpose.

The ones who brought you Let's Encrypt, bring you: Tools for gathering anonymized app usage metrics from netizens
2020-11-18 14:00

Today, the California-based non-profit, which operates Let's Encrypt, introduced Prio Services, a way to gather online product metrics without compromising the personal information of product users. "Normally they would just send all of the metrics back to the application developer, but with Prio, applications split the metrics into two anonymized and encrypted shares and upload each share to different processors that do not share data with each other."

Let’s Encrypt Warns Some Android Users of Compatibility Issues
2020-11-09 14:02

Let's Encrypt has warned users whose devices are running older versions of Android that they may start getting errors next year when visiting websites secured by its certificates. The organization estimates that roughly one-third of Android devices are still running these older versions, which means their users will start getting certificate errors once the cross-signed certificate expires.

Let's Encrypt warns about a third of Android devices will from next year stumble over sites that use its certs
2020-11-06 23:58

Let's Encrypt, a Certificate Authority that puts the "S" in "HTTPS" for about 220m domains, has issued a warning to users of older Android devices that their web surfing may get choppy next year. Next year, on September 1, 2021, the DST Root X3 certificate that Let's Encrypt initially relied for cross-signing will expire and devices that haven't been updated in the past four years to trust the X1 root certificate may find they're unable to connect to websites securely, not without throwing up error messages, at least.

New Pay2Key ransomware encrypts networks within one hour
2020-11-06 14:32

A new ransomware called Pay2Key has been targeting organizations from Israel and Brazil, encrypting their networks within an hour in targeted attacks still under investigation. In a new report by Check Point, researchers say that the threat actors behind Pay2Key ransomware are likely using publicly exposed Remote Desktop Protocol to gain access to victims' networks and deploy the initial malicious payloads.

RansomExx ransomware also encrypts Linux systems
2020-11-06 13:57

With companies commonly using a mixed environment of Windows and Linux servers, ransomware operations have increasingly started to create Linux versions of their malware to ensure they encrypt all critical data. A new report today by Kaspersky takes a look at the Linux version of the RansomExx ransomware, also known as Defray777.

WinZip Mac 8 Pro: Create backups and encrypt sensitive files with this Time Machine alternative
2020-11-03 21:22

Mac users can do more than just compress files using WinZip Mac 8 Pro. Figure A. The WinZip Mac 8 Pro wizard simplifies backing up specific files.

How to encrypt files on your Linux servers with gocryptfs
2020-09-18 17:56

Looking for an easy to use encryption tool to protect data on your Linux servers? Jack Wallen shows you how to install and use gocryptfs to serve that very purpose. The gocryptfs tool allows you to encrypt only the directories you need.

Users who don't understand how to encrypt their emails won't do it
2020-07-02 18:00

Users who don't understand how to encrypt their emails won't do it. There's another danger for companies whose users do try to grapple with the internal email encryption system: rising support costs.