Threat Post

New RC4 Attack Dramatically Reduces Cookie Decryption Time

A paper, expected to be presented at USENIX, describes new attacks against RC4 that make plaintext recovery times practical and within reach of hackers. Two Belgian security researchers from the ...
ZDNet

PGP encryption won't protect your data. But PURBs can.

Today's security threats have expanded in scope and seriousness. There can now be millions -- or even billions -- of dollars at risk when information security isn't handled properly. Read now Most ...
Ars Technica

Decade-old Efail flaws can leak plaintext of PGP- and S/MIME-encrypted emails

Unfixed bugs in widely used email programs make it possible for attackers to obtain the plaintext of messages that are encrypted using the PGP and S/MIME standards, researchers said early Monday ...
ZDNet

New attack can now decrypt satellite phone calls in "real time"

Chinese researchers have discovered a way to rapidly decrypt satellite phone communications -- within a fraction of a second in some cases. The paper, published this week, expands on previous research ...
Bleeping Computer

Windows 365 exposes Microsoft Azure credentials in plaintext

A security researcher has figured out a way to dump a user's unencrypted plaintext Microsoft Azure credentials from Microsoft's new Windows 365 Cloud PC service using Mimikatz. Mimikatz is an ...
CSOonline

EFAIL: Critical PGP and S/MIME bugs could reveal plaintext of encrypted emails

There's currently no fix for the critical flaws in PGP and S/MIME. Users are advised to disable PGP plug-ins and not to use decryption in email clients. EFAIL … it ...
Bleeping Computer

MEGA fixes critical flaws that allowed the decryption of user data

MEGA has released a security update to address a set of severe vulnerabilities that could have exposed user data, even if the data had been stored in encrypted form. MEGA is a New Zealand-based cloud ...