Articles about rsa

IDF

What Israel's crack majority-women Unit 8200 hackers can teach tech about diversity

RSA 2018 Former members of an Israeli intelligence unit say their operation could serve as a model for the tech companies looking to bring more women into their ranks. Unit 8200 serves as the nation's signal intelligence unit and is credited with training a number of experts who go on to careers in cybersecurity. It also boasts a large …
Shaun Nichols, 18 Apr 2018
boomerang

Hey, govt hacker bod. Made some really nasty malware? Don't be upset if it returns to bite you

RSA 2018 "You don't launch a cyber weapon, you share it." This was a reminder issued to RSA Conference attendees, in San Francisco on Tuesday, by two security researchers, who warned that advanced malware strains, particularly those developed by government hackers, can be captured and repurposed by cash-strapped miscreants to build a …
Shaun Nichols, 18 Apr 2018
Facebook CEO Mark Zuckerberg

Signal app guru Moxie: Facebook is like Exxon. Everyone needs it, everyone despises it

RSA 2018 Speaking at the 2018 RSA conference, a board of some of the most respected names in security spoke on Tuesday and were scathing about Facebook – and the industry's response to the Spectre processor bug. The Cryptographers' Panel, an annual tradition at the event, this year included Ronald Rivest of MIT and Adi Shamir of the …
Shaun Nichols, 17 Apr 2018

Women of Infosec call bullsh*t on RSA's claim it could only find one female speaker

Day one of the annual RSA conference in San Francisco on April 17 will have some competition after a group of female infosec professionals decided to hold their own shindig - titled Our Security Advocates or OURSA - to showcase the work of women in the field. Last week RSA was hammered on social media when its keynote speaker …
Iain Thomson, 7 Mar 2018

Cryptocurrency miners go nuclear, RSA blunder, Winner back in court, and plenty more

Roundup Here's a quick summary of infosec news from this week, beyond what we've already covered. Cloud security shop Cyren surveyed 500,000 websites over the past four months, and said it saw a 725 per cent increase in the use of surreptitious crypto-coin mining code. The bulk of that code has shown up in the past two months, and it' …
Iain Thomson, 4 Mar 2018
Gold robot photo via Shutterstock

I, Robot? Aiiiee, ROBOT! RSA TLS crypto attack pwns Facebook, PayPal, 27 of 100 top domains

A 19-year-old vulnerability in the TLS network security protocol has been found in the software of at least eight IT vendors and open-source projects – and the bug could allow an attacker to decrypt encrypted communications. Identified by security researchers Hanno Böck, Juraj Somorovsky of Ruhr-Universität Bochum/Hackmanit, …
Thomas Claburn, 13 Dec 2017

RSA coughs to critical-rated bug in its authentication SDK

RSA developers and admins have been given two critical-level authentication bugs to patch. For the sysadmin, the issue struck RSA's software providing Web-based authentication for Apache. CVE-2017-14377 is an authentication bypass that existed because of an “input validation flaw in RSA Authentication Agent for Web for Apache …
panic

F5 DROWNing, not waving, in crypto fail

If you're an F5 BIG-IP sysadmin, get patching: there's a bug in the company's RSA implementation that can give an attacker access to encrypted messages. As the CVE assignment stated: “a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) …

Never mind the WPA2 drama... Details emerge of TPM key cockup that hits tonnes of devices

RSA keys produced by smartcards, security tokens, laptops, and other devices using cryptography chips made by Infineon Technologies are weak and crackable – and should be regenerated with stronger algorithms. In short, Infineon TPMs – aka trusted platform modules – are used in countless computers and gadgets to generate RSA …
John Leyden, 16 Oct 2017
Man with megaphone

This is the Dell security team. We have you surrounded. Come out with a purchase order

Security buyers: Dell's got you surrounded. Come out with a purchase order, buy security software, and we can bring this to a peaceful ending. That appears to be the plan for integrating RSA and Dell, based on interviews The Register has conducted with RSA execs at the company's Asian conference in Singapore. We wanted to …
Simon Sharwood, 28 Jul 2017
burglar

A vendor that doesn’t think AI and ML will fix security? We found one!

Machine learning and artificial intelligence will improve security technologies and outcomes, but “won’t move the needle as much as people think”, according to RSA chief technology officer Zulfikar Ramzan. Speaking to The Register at the company’s Asian conference in Singapore today, Ramzan said that while AI and ML will …
Simon Sharwood, 26 Jul 2017

RSA SecurID admin console can issue emergency access to decent social engineers

Stop us if you've heard this one: an emergency access feature offered by RSA for SecurID token customers isn't completely secure. That's the opinion of pentest outfit Netspi, whose Alexander Leary worked out how to abuse the SecurID Emergency Access Tokencodes (EAT). The use-once codes are intended to provide a temporary …

Boffins show Intel's SGX can leak crypto keys

A researcher who in January helped highlight possible flaws in Intel's Software Guard Extensions' input-output protection is back, this time with malware running inside a protected SGX enclave. Instead of protecting the system, Samuel Weiser and four collaborators of Austria's Graz University of Technology write that the proof …
ISIS

Don’t panic over cyber-terrorism: Daesh-bags still at script kiddie level

RSA USA There’s no need to panic about the threat of a major online terrorist attack, since ISIS and their allies are all talk and no trousers. That's according to the former head of the US National Counterterrorism Center. Matt Olsen, who has also served as the NSA’s top lawyer, told the RSA security conference today that the levels …
Iain Thomson, 16 Feb 2017
Eric Schmidt

THE SCHMIDT HITS THE BAN: Keep your gloves off AI, military top brass

RSA USA Alphabet exec chairman Eric Schmidt is worried that the future of the internet is going to be under threat once the world’s militaries get good at artificial intelligence. Speaking at the RSA security conference in San Francisco, Google's ultimate supremo said he is worried the internet will be balkanized if countries lock …
Iain Thomson, 16 Feb 2017

Revealed: Web servers used by disk-nuking Shamoon cyberweapon

A detailed analysis of the Shamoon malware – which is playing a huge role in the cyberwar between Saudi Arabia and Iran – has identified servers used to spread the software nasty. Shamoon surfaced in 2012 when it infected 30,000 workstations in the world’s largest oil production firm, Saudi Aramco, wiped their hard drives, and …
Iain Thomson, 16 Feb 2017

You know IoT security is bad when libertarians call for strict regulation

RSA USA We all know the vast majority of Internet-of-Things devices haven’t anything more than a fig leaf for protection. Now the unlikeliest of folks are calling for rules to improve IoT security: libertarians. In a session today at the RSA infosec conference in San Francisco, Olaf Kolkman, the Internet Society’s chief internet …
Iain Thomson, 15 Feb 2017
RSA

Forget quantum and AI security hype, just write bug-free code, dammit

RSA USA Every year, the RSA Conference in San Francisco brings out the best and the brightest for its crypto panel, and the view from the floor was simple. Ignore the fads and hyped technology, and concentrate on the basics: good, clean, secure programming. The panelists were unimpressed with recent moves to build artificially …
Iain Thomson, 15 Feb 2017

Create a news alert about rsa, or find more stories about rsa.

Biting the hand that feeds IT © 1998–2018