Analysis of the actions of the Lapsus$ cybercriminal ransomware gang shows they are going after bigger targets: Lapsus$ gang sends a worrying message to would-be criminals • The Register
Weak cryptographic keys in the wild – UPDATED
This post was originally published on 15 March 2022 Researcher, Hanno Böck, has found very weak cryptographic keys in use that have been generated by SafeZone Crypto Libraries, once owned by Inside Secure and now owned by Rambus. These keys are so weak that consumer grade hardware running old algorithms. …
Continue reading “Weak cryptographic keys in the wild – UPDATED”
Samsung stolen data dumped online
The Lapsus$ cyber crime gang has revealed online, what Samsung has acknowledged to be nearly 200GB of Samsung internal files. Lapsus$ gang dump Samsung data online • The Register Lapsus$ has also stolen internal files from Nvidia in a separate extortion bid. More bad news for Nvidia – and advice …
Samsung smartphones with leaky security – update and advice
Here is some follow-up to the Android Trusted Execution Environment security issue with Samsung smartphones. 100 million Samsung phones affected by encryption weakness | TechRepublic The advice here is whatever device you have, keep those patches and updates up-to-date. Samsung smartphones with leaky security – Smart Thinking Solutions Samsung Encryption …
Continue reading “Samsung smartphones with leaky security – update and advice”
Samsung smartphones with leaky security
There is an academic paper from Tel Aviv University examining Samsung smartphones and how they implement the cryptographic security. They found that some models had a design flaw that allowed for the extraction of the secret keys. Trust Dies in Darkness: Shedding Light on Samsung’s TrustZone Keymaster Design (iacr.org) Here …
