Collecting Cyber-News from over 60 sources

Tag: cryptography

The ROI of moving certificate management in-house with internal CAs

Jun 20, 2025 1:35 PM

Tags: automation, compliance, control, cryptography, infrastructure, tool

Managing certificates in-house using private CAs offers enterprises greater security, compliance, and long-term cost savings. With the shift toward shorter certificate lifespans and rising complexity in modern IT environments, public CAs often fall short. Private CAs empower businesses with agility, automation, and control while supporting post-quantum cryptography and hybrid infrastructure needs. Tools like Sectigo streamline…
Post-Quantum World: From Research to Real-World Cryptography

Jun 19, 2025 6:36 PM

Tags: ai, computer, cryptography, technology

MIT’s Vinod Vaikuntanathan on Post-Quantum Shift, Cryptography’s Role in AI Trust. As the race to build quantum computers intensifies, a parallel transformation is taking place in the field of cryptography. Vinod Vaikuntanathan, professor of computer science at Massachusetts Institute of Technology, believes now is the time to act. First seen on govinfosecurity.com Jump to article:…
Securing the Future Together: Why Thales and HPE are the Partners You Can Trust

Jun 17, 2025 2:54 PM

Tags: access, ai, application-security, banking, business, cloud, compliance, computing, control, cryptography, cyber, cyberattack, data, dora, encryption, GDPR, government, Hardware, healthcare, infrastructure, network, nis-2, PCI, resilience, risk, service, software, strategy, threat

Securing the Future Together: Why Thales and HPE are the Partners You Can Trust madhav Tue, 06/17/2025 – 05:15 Across every industry, data drives decisions, innovation, and growth. As organizations modernize with hybrid cloud and AI, the risks to that data scale are just as fast. From sophisticated cyberattacks to increasingly stringent compliance demands, the…
Accelerate PQC Migration: How to Leverage CBOMs for Cryptographic Asset Discovery

Jun 12, 2025 5:54 PM

Tags: computing, crypto, cryptography, risk, software
Trump takes aim at Biden’s cyber executive order but leaves it largely untouched

Jun 10, 2025 12:55 AM

Tags: access, ai, china, compliance, computer, credentials, cryptography, cyber, cybercrime, cybersecurity, data, defense, detection, exploit, fraud, government, identity, infrastructure, intelligence, malicious, network, nist, office, privacy, programming, risk, risk-management, service, software, supply-chain, technology, threat, tool, unauthorized, vulnerability, zero-day

Executive Order 13694 and Executive Order 14144.”A fact sheet accompanying the order says that President Trump’s EO modifies “problematic and distracting issues” of Obama- and Biden-era cybersecurity EOs, particularly “digital identity mandates that risked widespread abuse by enabling illegal immigrants to improperly access public benefits.”Virtually all of the changes implemented by the Trump administration address…
New Trump Cybersecurity Order Reverses Biden, Obama Priorities

Jun 10, 2025 12:55 AM

Tags: ai, cryptography, cyber, cybersecurity, government, software

The White House put limits on cyber sanctions, killed the digital ID program, and refocused the government’s cyber activities to enabling AI, rolling out post-quantum cryptography, and promoting secure software design. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/trump-cybersecurity-order-reverses-biden-obama-priorities
Cybersecurity Snapshot: Experts Issue Best Practices for Migrating to Post-Quantum Cryptography and for Improving Orgs’ Cyber Culture

Jun 6, 2025 6:55 PM

Tags: access, attack, best-practice, business, cio, ciso, communications, computer, computing, conference, corporate, crypto, cryptography, cyber, cybersecurity, data, defense, email, encryption, finance, government, group, ibm, identity, incident, incident response, infrastructure, jobs, lessons-learned, metric, microsoft, mitre, monitoring, nist, risk, service, strategy, technology, threat, tool, training, update, vulnerability, vulnerability-management, warfare

Check out a new roadmap for adopting quantum-resistant cryptography. Plus, find out how your company can create a better cybersecurity environment. In addition, MITRE warns about protecting critical infrastructure from cyber war. And get the latest on exposure response strategies and on CISO compensation and job satisfaction. Dive into five things that are top of…
CISOs urged to push vendors for roadmaps on post-quantum cryptography readiness

Jun 6, 2025 8:55 AM

Tags: business, ciso, cloud, control, cryptography, guide, risk

No ‘forklift upgrade’ needed: There is a misconception that change is difficult but the task of modernizing systems to make them PQC-ready can be broken down into chunks, advised Anne Leslie, cloud risk and controls leader for EMEA at IBM.”Businesses can only go as fast as partners and suppliers,” Leslie cautioned.Madelein van der Hout, senior…
Cybersecurity Needs Satellite Navigation, Not Paper Maps

Jun 5, 2025 7:55 PM

Tags: access, ai, attack, automation, best-practice, breach, business, ceo, cloud, communications, computer, computing, cryptography, cyber, cyberattack, cybersecurity, data, data-breach, deep-fake, defense, encryption, endpoint, exploit, finance, firewall, framework, government, Hardware, healthcare, infrastructure, intelligence, Internet, leak, least-privilege, malicious, military, network, phishing, privacy, resilience, risk, saas, service, social-engineering, software, strategy, technology, threat, tool, vpn, vulnerability, zero-trust
FIPS 140-3 and You, Part Three

Jun 5, 2025 2:54 PM

Tags: attack, authentication, ccc, compliance, conference, crypto, cryptography, cybersecurity, data, encryption, firmware, Hardware, international, network, nist, side-channel, software, technology, update

FIPS 140-3 and You, Part Three divya Thu, 06/05/2025 – 07:00 Last spring, in the second installment of this blog series, we were excited to announce that our Luna HSM product line was the first HSM in the industry to achieve FIPS 140-3 level 3 validation certificate. This spring, in this third installment, we happily…
Cybersecurity’s ‘rare earth’ skills: Scarce, high-value, and critical for future defense

Jun 4, 2025 11:55 AM

Tags: ai, attack, business, ciso, computing, crypto, cryptography, cyber, cybersecurity, data, defense, detection, intelligence, jobs, programming, risk, skills, strategy, supply-chain, technology, threat, training

Advanced threat hunting expertise Like the rarest elements, professionals who can proactively identify novel threats and adversary techniques before they cause damage are scarce and extremely valuable. Why are these skills rare? Many factors have led to this scenario:Complex skill requirements: Effective threat hunters need a unique combination of skills, including deep cyber knowledge, programming…
New post-quantum cryptography migration guidance unveiled

Jun 2, 2025 10:54 PM

Tags: cryptography

First seen on scworld.com Jump to article: www.scworld.com/brief/new-post-quantum-cryptography-migration-guidance-unveiled
MITRE Outlines Roadmap for Post-Quantum Cryptography Migration

Jun 2, 2025 10:54 PM

Tags: cryptography, mitre

First seen on scworld.com Jump to article: www.scworld.com/brief/mitre-outlines-roadmap-for-post-quantum-cryptography-migration
MITRE Releases Roadmap for Transition to Post-Quantum Cryptography

Jun 2, 2025 9:55 AM

Tags: computing, cryptography, cyber, framework, guide, infrastructure, mitre, threat

The nonprofit research organization MITRE has unveiled a comprehensive roadmap designed to guide organizations through the critical transition from current cryptographic standards to quantum-resistant algorithms. This strategic framework addresses the emerging threat posed by quantum computing capabilities to existing public-key cryptographic infrastructures, providing detailed implementation timelines and technical specifications for adopting post-quantum cryptographic (PQC) standards…
Noisy quantum hardware could crack RSA-2048 in seven days

May 30, 2025 3:55 PM

Tags: computing, cryptography, Hardware

Research highlights the need for quantum safe cryptography given the speed with which quantum computing is evolving First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366625113/Noisy-quantum-hardware-could-crack-RSA-2048-in-seven-days
Certified Randomness Uses Quantum Cryptography to Make Stronger Keys

May 29, 2025 2:55 PM

Tags: computer, cryptography, data

Researchers are using quantum computers to generate keys that are truly random to strengthen data encryption. First seen on darkreading.com Jump to article: www.darkreading.com/endpoint-security/certified-randomnes-squantum-cryptography-stronger-keys
95% of Organizations Lack a Quantum Computing Strategy

May 28, 2025 8:55 PM

Tags: compliance, computing, cryptography, cyber, data, risk, strategy, technology

ISACA Survey: 51% See Cyber Risk Hike; 46% Expect Regulatory, Compliance Challenges. Quantum technology is still emerging, but experts warn that failing to act now could jeopardize future data security. To safeguard tomorrow’s information, organizations must start developing a post-quantum cryptography strategy and upskill their workforce today. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/95-organizations-lack-quantum-computing-strategy-a-28501
AI, Quantum and the Evolving Threat Landscape: Key Findings from the Thales 2025 Data Threat Report

May 27, 2025 1:54 PM

Tags: ai, api, attack, authentication, awareness, breach, cloud, compliance, computing, control, crypto, cryptography, data, encryption, guide, malicious, malware, mfa, nist, passkey, phishing, privacy, programming, ransomware, regulation, risk, software, strategy, threat, tool, vulnerability

AI, Quantum and the Evolving Threat Landscape: Key Findings from the Thales 2025 Data Threat Report madhav Tue, 05/27/2025 – 04:40 The Thales 2025 Data Threat Report reveals a critical inflection point in global cybersecurity. As the threat landscape grows more complex and hostile, the rapid adoption of generative AI is amplifying both opportunity and…
Survey Surfaces Limited Amount of Post Quantum Cryptography Progress

May 23, 2025 3:54 PM

Tags: computing, cryptography, cybersecurity, encryption, risk

A survey of 1,042 senior cybersecurity managers in the U.S., the United Kingdom and Australia finds only 5% have implemented quantum-safe encryption, even though 69% recognize the risk quantum computing poses to legacy encryption technologies. First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/05/survey-surfaces-limited-amount-of-post-quantum-cryptography-progress/
Preparing for the post-quantum era: a CIO’s guide to securing the future of encryption

May 16, 2025 9:54 PM

Tags: cio, cryptography, encryption, guide

Here’s why CIOs must lead post-quantum cryptography adoption in 2025 to secure digital assets and future-proof organizations. First seen on cyberscoop.com Jump to article: cyberscoop.com/quantum-computing-cio-pqc-preparation-2025/
IAM 2025: Diese 10 Trends entscheiden über Ihre Sicherheitsstrategie

May 13, 2025 1:38 PM

Tags: access, ai, api, authentication, best-practice, cio, ciso, cloud, compliance, conference, credentials, crypto, cryptography, detection, dora, framework, governance, iam, identity, iot, kritis, login, mfa, nis-2, resilience, risk, risk-analysis, service, strategy, threat, tool, zero-trust

Die Kernaussage der EIC Conference 2025: IAM ist ein ganzheitlicher Architekturansatz und kein Toolset. Identity & Access Management (IAM) ist nicht länger eine Frage der Tool-Auswahl, sondern der Architektur. Diese Kernaussage prägte die European Identity and Cloud Conference 2025, die vom 6. bis 9. Mai in Berlin stattfand. Mit über 1.500 Teilnehmern, 300 Rednern und…
Just 5% of Enterprises Have Deployed Quantum-Safe Encryption

May 8, 2025 3:10 PM

Tags: cryptography, encryption

DigiCert survey finds only 5% of global businesses are using post-quantum cryptography First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/just-5-enterprises-quantumsafe/
Thales Named an Overall Leader in 2025 KuppingerCole Leadership Compass for Enterprise Secrets Management

May 8, 2025 11:11 AM

Tags: access, api, attack, automation, cloud, compliance, control, credentials, cryptography, data, encryption, exploit, governance, guide, Hardware, identity, iot, monitoring, risk, saas, service, software, strategy, threat, tool, unauthorized, vulnerability

Thales Named an Overall Leader in 2025 KuppingerCole Leadership Compass for Enterprise Secrets Management madhav Thu, 05/08/2025 – 06:31 We’re proud to share that Thales has been recognized as an Overall Leader in the 2025 KuppingerCole Leadership Compass for Enterprise Secrets Management. This prestigious ranking highlights our strength across three critical areas: product capabilities, innovation,…
Phishing-Resistant MFA: Why FIDO is Essential

May 8, 2025 11:11 AM

Tags: access, ai, attack, authentication, breach, business, cloud, compliance, credentials, cryptography, cybersecurity, data, data-breach, defense, dora, encryption, exploit, fido, framework, GDPR, Hardware, iam, identity, ISO-27001, malicious, mfa, mobile, network, nist, passkey, password, phishing, phone, ransomware, regulation, risk, service, social-engineering, software, strategy, tactics, technology, theft, threat, tool, unauthorized

Phishing-Resistant MFA: Why FIDO is Essential madhav Thu, 05/08/2025 – 04:47 Phishing attacks are one of the most pervasive and insidious threats, with businesses facing increasingly sophisticated and convincing attacks that exploit human error. Traditional Multi-Factor Authentication (MFA), while a step up from password-only security, is no longer enough to fight modern phishing schemes. Today’s…
Why the Finance Sector Must Lead the Shift to Post-Quantum Cryptography

May 8, 2025 5:10 AM

Tags: computing, cryptography, data, encryption, finance, threat

Quantum computing is not some far-off theory anymore, and the threat to today’s encryption is real with the clock running for organizations to be resilient. And for banks and finance organizations sitting on mountains of sensitive data, the urgency to prepare for post-quantum cryptography (PQC) is growing. With Q-day (the day a powerful quantum computer……
Quantum supremacy: Cybersecurity’s ultimate arms race has China way in front

May 7, 2025 10:50 AM

Tags: ai, authentication, automation, backup, banking, breach, business, china, ciso, computing, control, crypto, cryptography, cybersecurity, data, encryption, finance, government, healthcare, identity, infrastructure, jobs, military, ml, nist, risk, service, skills, technology, threat, update, vulnerability, zero-day

The DeepSeek/Qwen factor: What we learned from recent AI advances, such as DeepSeek and Qwen, that caught the world by surprise is that China’s technology is much more advanced than anyone anticipated. I’d argue that this is a leading indicator that China’s quantum computing capabilities are also in absolute stealth-mode development and ahead of the…
NCSC Guidance on “Advanced Cryptography”

May 2, 2025 1:50 PM

Tags: cryptography, cyber, data, encryption, guide

The UK’s National Cyber Security Centre just released its white paper on “Advanced Cryptography,” which it defines as “cryptographic techniques for processing encrypted data, providing enhanced functionality over and above that provided by traditional cryptography.” It includes things like homomorphic encryption, attribute-based encryption, zero-knowledge proofs, and secure multiparty computation. It’s full of good advice. I…
Quantum computer threat spurring quiet overhaul of internet security

May 1, 2025 11:50 PM

Tags: computer, cryptography, Internet, threat

Cryptography experts said a “Cambrian explosion” of standards is on its way as a response to worries over quantum computers breaking current algorithms. First seen on cyberscoop.com Jump to article: cyberscoop.com/cloudflare-ibm-quantum-security-cryptography-migration/
The 14 most valuable cybersecurity certifications

May 1, 2025 10:50 AM

Tags: access, ai, application-security, attack, automation, best-practice, blockchain, blueteam, china, cisa, cisco, ciso, cloud, compliance, computer, computing, conference, control, country, credentials, cryptography, cyber, cybersecurity, data, defense, encryption, endpoint, exploit, finance, governance, government, guide, hacker, hacking, incident response, intelligence, Internet, jobs, kali, law, linux, malware, metric, microsoft, monitoring, network, penetration-testing, privacy, reverse-engineering, risk, risk-analysis, risk-management, skills, threat, training, vulnerability, windows

Industry recognition Who’s to say one certification is more respected than another? Such criteria can be very subjective, so we turned to the most direct and unbiased source to cut through the ambiguity: job listings. In addition to education, skills, and qualifications, employers often specify certs they seek in their ideal candidate. These mentions carry…
2025 The International Year of Quantum Science and Technology

Apr 29, 2025 2:52 PM

Tags: access, attack, cloud, compliance, computer, conference, crypto, cryptography, cybersecurity, data, encryption, finance, government, group, Hardware, infrastructure, international, lessons-learned, network, nist, regulation, risk, risk-assessment, software, strategy, technology, tool

2025 The International Year of Quantum Science and Technology divya Tue, 04/29/2025 – 07:48 It is no surprise that the United Nations declared 2025 as the International Year of Quantum Science and Technology (IYQ). Not only does it mark the 100-year point since quantum physics were discovered, but for those who have been following, the…