According to recent news reports, a 19-year old vulnerability that enabled attackers to decrypt encrypted data and sign communications sites’ secret encryption keys has returned. The vulnerability was disclosed back in 1998 in the TLS predecessor known as secure sockets layer. A recent study found that 27 of the 100 most-visited websites—including Facebook and PayPal—are vulnerable to what is essentially the same attack. About 2.8 percent of the top 1 million sites also tested positive. According to the researchers, it was hiding in plain sight.
Christopher Steffen, CISSP, CISA, Technical Director
“We are a world at war – and most people don’t even know it. It is not a traditional war with bombers, battleships and bazookas. Rather, it is being fought everyday by cyber soldiers, protecting governments and organizations from state-sponsored hackers and organized crime. Unfortunately, most private enterprises and organizations do not have the resources to effectively combat coordinated cyberattacks – it isn’t their core business and information security resources are expensive and hard to come by. But the picture isn’t as bleak as it sounds.
A team of researchers, which includes Tripwire VERT’s Craig Young, have revealed that TLS stacks from at least 8 different vendors, including F5, Citrix, and Cisco are vulnerable to a well-known 19-year-old protocol flaw called Oracle Threat known as ROBOT. The research found that some of the most popular webpages on the Internet were affected, including Facebook and Paypal.
Breaking news has revealed that security researchers have discovered a new database on the dark web that contains 1.4 billion user names and password combinations in clear text. While scouring the dark web for stolen, leaked or lost data, researchers at 4iQ found the 41GB file with an interactive, aggregate database dubbed the largest ever found in the dark web to date.
13,800 breakdown calls made to breakdown providers by 12:00pm on Monday 11th December
· 49,800 calls made during the previous three days (Friday, Saturday & Sunday)
· Cold weather set to continue and conditions predicted to worsen
· Motorists urged to stay safe and avoid driving in freezing weather if possible
As snow and ice strike Britain, Green Flag has revealed record numbers of calls to breakdown providers across the UK on Monday 11th December.
It has been reported that Security researchers have discovered a new database floating around the dark web that contains a whopping 1.4 billion user names and password combinations in clear text. While scouring the dark web for stolen, leaked or lost data, researchers at 4iQ found the 41GB file with an interactive, aggregate database dubbed the largest ever found in the dark web to date.
Reports have surfaced on the discovery of potentially the single largest aggregate database yet found on the Dark Web. Researchers have found a database of 1.4 billion clear text credentials which are not from a new breach, but a compilation of 252 previous breaches.