Security News

NSA Discloses Serious Windows Vulnerability to Microsoft

2020-01-14 20:12

The U.S. National Security Agency has informed Microsoft that Windows is affected by a potentially serious spoofing vulnerability that could allow hackers to make a malicious file appear to come from a trusted source or conduct man-in-the-middle attacks. The NSA reached out to reporters to inform them about the vulnerability before Microsoft released its patches.

#microsoft #NSA #vulnerability #windows

Warning: Quickly Patch A New Critical Windows 10 Flaw Discovered by the NSA

2020-01-14 10:48

What's so special about the latest Patch Tuesday is that one of the updates fixes a serious flaw in the core cryptographic component of widely used Windows 10, Server 2016 and 2019 editions that was discovered and reported to the company by the National Security Agency of the United States. What's more interesting is that this is the first security flaw in Windows OS that the NSA reported responsibly to Microsoft, unlike the Eternalblue SMB flaw that the agency kept secret for at least five years and then was leaked to the public by a mysterious group, which caused WannaCry menace in 2017.

#critical #NSA #patch #windows #windows10 #CVE-2020-0609 #CVE-2020-0610

FYI: FBI raiding NSA's global wiretap database to probe US citizens probably illegal, unconstitutional, court says

2019-12-19 01:15

A data silo we didn't know existed until a certain IT admin went rogue Analysis The FBI is likely breaking the Fourth Amendment, which protects against unreasonable searches, when it investigates...

#database #FBI #illegal #NSA #US

The NSA Warns of TLS Inspection

2019-11-22 12:16

The NSA has released a security advisory warning of the dangers of TLS inspection: Transport Layer Security Inspection (TLSI), also known as TLS break and inspect, is a security process that...

#NSA #TLS

NSA Issues Advisory on Mitigation of Risks Associated With TLSI

2019-11-20 15:48

The U.S. National Security Agency (NSA) has published an advisory to provide information on possible mitigations for risks associated with Transport Layer Security Inspection (TLSI). read more

#advisory #mitigation #NSA

NSA won’t collect phone location data, promises US government

2019-11-18 11:38

US intelligence agencies won’t harvest US residents’ geolocation data in future investigations, revealed the US government this month.

#locationdata #NSA #phone #US

NSA to Congress: Our spy programs don’t work, aren’t used, or have gone wrong – now can you permanently reauthorize them?

2019-11-06 21:26

Senators: Um, no. The NSA was unable to give a single example of how one of its most controversial spying programs has been useful in the fight against terrorism in a Congressional hearing on...

#congress #NSA #SPY

NSA Is Latest Intelligence Agency to Sound VPN Patch Alarm

2019-10-09 12:33

Not Just Patch or Perish, But Also Pay Attention, Security Experts WarnThe U.S. National Security Agency is the latest intelligence agency to warn that unpatched flaws in three vendors' VPN...

#NSA #patch #VPN

NSA: Multiple State-Sponsored APTs Exploiting Enterprise VPN Flaws

2019-10-09 12:07

After the UK’s National Cyber Security Centre (NCSC) issued an alert, the National Security Agency (NSA) in the United States has also warned organizations that multiple state-sponsored threat...

#APT #NSA #statesponsored #VPN

Code Execution Vulnerability Impacts NSA Reverse Engineering Tool

2019-10-08 13:45

Versions through 9.0.4 of the Ghidra software reverse engineering (SRE) framework are impacted by a code-execution vulnerability, the National Security Agency (NSA) has revealed. read more

#codeexecution #NSA #vulnerability

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News