Hot Topics

cryptography

quantum data scraping

Cleantech and Quantum Computing: Critical Infrastructure Cybersecurity

| | cryptography, encryption, post quantum, quantum, quantum computing, security
As cleantech becomes a bigger part of U.S. critical infrastructure, it faces a bigger risk from cyberattackers leveraging quantum attacks ...
Security Boulevard

Power LED Side-Channel Attack

| | cameras, cryptography, keys, side-channel attacks, Uncategorized
This is a clever new side-channel attack: The first attack uses an Internet-connected surveillance camera to take a high-speed video of the power LED on a smart card reader­—or of an attached ...
Schneier on Security
encryption,QKD quantum

Encryption Evolution is on the Horizon

| | cryptography, Cybersecurity, encryption, Quantum Computers
Quantum computers are an emerging technology that will revolutionize several aspects of computational power across countless fields. One of the more concerning predictions is the likelihood that quantum computers will eventually break ...
Security Boulevard

AI-Generated Steganography

| | academic papers, Artificial Intelligence, cryptography, encryption, steganography, Uncategorized
New research suggests that AIs can produce perfectly secure steganographic images: Abstract: Steganography is the practice of encoding secret information into innocuous content in such a manner that an adversarial third party ...
Schneier on Security
Session on Network Security and Key Exchange

Real World Crypto 2023 Recap

| | Conferences, cryptography
Last month, hundreds of cryptographers descended upon Tokyo for the first Real World Crypto Conference in Asia. As in previous years, we dispatched a handful of our researchers and engineers to present ...
Trail of Bits Blog
Technical Advisory – Azure B2C – Crypto Misuse and Account Compromise

Technical Advisory – Azure B2C – Crypto Misuse and Account Compromise

| | authorization, azure, Cloud Security, cryptography, oauth refresh token, refresh token, Uncategorized
Microsoft’s Azure Active Directory B2C service contained a cryptographic flaw which allowed an attacker to craft an OAuth refresh token with the contents for any user account. An attacker could redeem this ...
Blog - Praetorian
Amazing Fast Crypto for IoT — US NIST Fingers ASCON

Amazing Fast Crypto for IoT — US NIST Fingers ASCON

| | AEAD, aes, ASCON, CAESAR, cryptography, hash, hash algorithms, hash function, hash functions, Internet of things, Internet of Things (IoT), Internet of Things (IoT) Security, Internet of Things cyber security, iot, NIST, SB Blogwatch
Implementing modern cryptography standards on tiny IoT devices is hard. They’re underpowered, need to sip battery charge and something like AES is often overkill ...
Security Boulevard

Attacking Machine Learning Systems

| | cryptography, cyberattack, Cybersecurity, essays, machine learning, Uncategorized, Vulnerabilities
The field of machine learning (ML) security—and corresponding adversarial ML—is rapidly advancing as researchers develop sophisticated techniques to perturb, disrupt, or steal the ML model or data. It’s a heady time; because ...
Schneier on Security
“Mobile application vulnerabilities: The hidden threat to sensitive data and security”

“Mobile application vulnerabilities: The hidden threat to sensitive data and security”

| | Android Security, CERT-In, compliances, cryptography, Mobile Security, Penetration Testing, two factor authentication, VAPT
Introduction Mobile developers must be constantly aware of security flaws and possess the knowledge necessary to mitigate them in light of the increasing number of mobile apps. Developers can learn how to ...
Kratikal Blogs
Keeping the wolves out of wolfSSL

Keeping the wolves out of wolfSSL

| | cryptography, fuzzing, Internship Projects
By Max Ammann Trail of Bits is publicly disclosing four vulnerabilities that affect wolfSSL: CVE-2022-38152, CVE-2022-38153, CVE-2022-39173, and CVE-2022-42905. The four issues, which have CVSS scores ranging from medium to critical, can ...
Trail of Bits Blog
Load more