RC4's Dead and White House On Security Last week, I was in the UK attending a WatchGuard Partner conference, and as a result I only shot two videos and skipped my weekly summary. Nonetheless, there was still plenty of interesting information security (infosec) news, which I don't want you to miss. So to make up for it, let me quickly share three infosec stories I would have … [Read more...]
WatchGuard Breaks Logjam and Protects Encrypted Connections
This week, a group of university researchers disclosed a new vulnerability affecting the Diffie-Hellman key exchange. The Diffie-Hellman (DH) key exchange is a cryptographic method for two systems to establish a shared secret over a public communication channel, which they later use to encrypt their communications. Many encryption protocols, including HTTPS, SMTPS, IPSec VPN, … [Read more...]
Cryptography Logjam – Daily Security Byte EP.86
Are you getting sick of SSL/TLS and other cryptography related vulnerabilities? I sure am! Nonetheless, we need to keep on top of them in order to keep our communications private. In today's daily video I cover Logjam, a new named vulnerability having to do with the Diffie-Hellman key negotiation. Watch the video to learn which of your systems might be affected, and more … [Read more...]
Google vs. CNNIC – Daily Security Byte EP.58
Google has discovered unauthorized digital certificates being used in a SSL man-in-the-middle attacks in Egypt. They tracked the certs to CNNIC and decided to remove the popular Chinese certificate authority from Chrome's trust chain. Watch the video for more details. (Episode Runtime: 2:37) Direct YouTube Link: https://www.youtube.com/watch?v=hKUs-kLKa50 EPISODE … [Read more...]
Microsoft March Patch Madness – Daily Security Byte EP.41
Today's Microsoft Patch Day is huge, with 14 bulletins fixing tens of vulnerabilities (many Critical). If you want to protect your encrypted web connections, and plug a five year old, zero day hole, you should update. See the video for details, or check out our blog post from earlier. (Episode Runtime: 2:28) Direct YouTube … [Read more...]