Security News

Zoom announced this week that on May 22 it will publish a detailed draft of the cryptographic design it plans on using for its upcoming end-to-end encryption feature. As a result of increased scrutiny from privacy and security experts - as well as hackers targeting meetings - Zoom has started making improvements to its platform and it has promised to implement changes and new features that would significantly enhance security and privacy.

The U.S. Department of Justice announced on Monday that the FBI managed to gain access to the data stored on two iPhones belonging to an individual who last year killed and wounded several people at a United States naval base. U.S. Attorney General William Barr and FBI Director Christopher Wray announced on Monday that the FBI managed to access the data stored on the two locked iPhones.

Reply all woes, DHS says no to DoH and why turning your computer off is good for security.

Cloud services provider Volterra has a new encryption tool to make file sharing via collaborative platforms more secure without using passwords or public-key cryptography. VoltShare encrypts data and files locally to add an extra layer of security to collaboration and cloud storage platforms including Slack, Teams, and Dropbox.

ADVA announced that it is playing a key role in a unique research initiative extending post-quantum security to VPN networks. Leveraging the ADVA FSP 150 with ConnectGuard Ethernet encryption, the Quantum-Secure VPN Modules and Operation Modes project is testing new quantum-resistant algorithms in the packet domain.

The bad news is that whoever wrote this malware decided to be doubly destructive: it scrambles the files on your C: drive using a secret decryption key, but it wipes out the files on all your other drives, looping through all the letters A: to Z: except C:, issuing commands to delete all the files and directories it can find. The good news is that the programmer of Ransom-FXO didn't take much care over the encryption part, and used a hardcoded cryptographic key that can fairly easily be extracted from the malware file.

The 25-person, New York-based company will provide more robust encryption for Zoom calls on paid subscriptions by implementing an end-to-end architecture. "Logged-in users will generate public cryptographic identities that are stored in a repository on Zoom's network and can be used to establish trust relationships between meeting attendees," Zoom CEO Eric Yuan explained in a Thursday blog post.

Popular communications platform provider Zoom Video announced on Thursday that it has acquired secure messaging and file-sharing service Keybase for an undisclosed sum. The move is the latest by the company as it attempts to bolster the security of its offerings and build in end-to-end encryption that can scale to the company's massive user base.

The threat actors behind the Shade ransomware have called it quits, releasing 750,000 encryption keys on GitHub and publicly apologizing to victims affected by the malware. User "Shade-team" posted four files on the code repository earlier this week, one containing the file keys and four "ReadMe" files with decryption instructions and other information.

McAfee, a device-to-cloud cybersecurity company, announced that McAfee MVISION Cloud now supports encryption enhancements in Microsoft Teams, including encrypted webhooks and encrypted payloads. This enables organizations to improve productivity of their employees by letting them use Teams as a collaboration platform, participate in conversations and calls and upload and share documents while ensuring customer data remains secure with encryption when evaluated by McAfee MVISION Cloud.