Tag: encryption
-
EU Pushes for Backdoors in EndEnd Encryption
European Commission Demands Law Enforcement Access to Data. The European Commission’s ProtectEU strategy aims to overhaul internal security, proposing law enforcement access to encrypted data by 2026 and a roadmap to explore lawful encryption backdoors and enhanced intelligence-sharing between EU member states and agencies to combat rising cyber threats. First seen on govinfosecurity.com Jump to…
-
Breach Roundup: Fast Flux DNS Misuse Evades Easy Detection
Also: Gootloader Malware, GCHQ Intern Pleads Guilty, Check Point Breach Update. This week, a Fast Flux warning, Gootloader malware, an GCHQ intern pleaded guilty to stealing top secret data and Check Point undercuts hacking claim. Also, Google rolled out end-to-end encryption for some Gmail users, Apple backported patches and Dutch prosecutors cut internet access. First…
-
EU: These are scary times let’s backdoor encryption!
ProtectEU plan wants to have its cake and eat it too First seen on theregister.com Jump to article: www.theregister.com/2025/04/03/eu_backdoor_encryption/
-
Google sichert Gmail mit einer Ende-zu-Ende-Verschlüsselung ab
E-Mail-Verschlüsselung ist für viele Unternehmen Pflicht gerade in regulierten Branchen. Doch der Status quo ist frustrierend: Bestehende Lösungen wie S/MIME sind technisch anspruchsvoll, teuer in der Umsetzung und oft nur innerhalb geschlossener Systeme praktikabel. Proprietäre Tools setzen auf Drittanbieter-Plattformen und Zusatzsoftware mit häufig gravierenden Nachteilen für Nutzerfreundlichkeit und IT-Abteilungen. Mit dem neuen Google-Cloud-Modell […] First…
-
Gmail ‘bubble’ encryption may be an S/MIME killer, says Google
Marking the 21st anniversary of Gmail, Google is preparing to roll out an end-to-end encryption standard for its email service in hopes of democratising encryption and leaving old standards in the dust First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366621818/Gmail-bubble-encryption-may-be-an-S-MIME-killer-says-Google
-
How SSL Misconfigurations Impact Your Attack Surface
When assessing an organization’s external attack surface, encryption-related issues (especially SSL misconfigurations) receive special attention. Why? Their widespread use, configuration complexity, and visibility to attackers as well as users make them more likely to be exploited. This highlights how important your SSL configurations are in maintaining your web application security and First seen on thehackernews.com…
-
Google Introduces EndEnd Encryption for Gmail Business Users
Google has unveiled end-to-end encryption (E2EE) capabilities for Gmail enterprise users, simplifying encrypted email communication for businesses of all sizes. This feature, launched in beta today to coincide with Gmail’s birthday, aims to bridge the gap between robust security and user-friendly functionality, allowing organizations to enhance data privacy without the traditional complexity of encryption setups.…
-
Google adds endend email encryption to Gmail
Google creates new email encryption model: Google took a different approach and created a new model that no longer requires complex user certificate management or exchanging keys with external organizations to decrypt messages.Google’s new E2EE Gmail implementation relies on the existing client-side encryption (CSE) feature in Google Workspace, which allows customers to use their own…
-
Google Brings EndEnd Encryption to Gmail
The new Google Workspace features will make it easier for enterprise customers to implement end-to-end encryption within Gmail. First seen on darkreading.com Jump to article: www.darkreading.com/data-privacy/google-end-to-end-encryption-gmail
-
European Commission takes aim at endend encryption and proposes Europol become an EU FBI
The Commission said it would create roadmaps regarding both the “lawful and effective access to data for law enforcement” and on encryption. First seen on therecord.media Jump to article: therecord.media/european-commission-takes-aim-encryption-europol-fbi-proposal
-
Navigating the Quantum Shift: A Practical Approach to Crypto-Agility with PQC-Enabled PKI
The conversation around quantum computing is shifting from theory to reality, especially when it’s centered on security and mounting threats against current encryption algorithms. The UK National Cyber Security Centre’s (NCSC) recent guidance on “PQC Migration Timelines” underscores the urgency for organizations to transition to post-quantum cryptography (PQC). Urgency is being driven by the rising……
-
Happy 21st Birthday, Gmail! Google’s Present to Enterprise Gmail Users: EndEnd Encryption
The new feature is more accessible than S/MIME because it eliminates the need for certificate management. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-gmail-end-to-end-encryption/
-
Google rolls out easy endend encryption for Gmail business users
Google has started rolling out a new end-to-end encryption (E2EE) model for Gmail enterprise users, making it easier to send encrypted emails to any recipient. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/google-rolls-out-easy-end-to-end-encryption-for-gmail-business-users/
-
Apple devices are at ‘most risk’ in UK following government ‘backdoor’ order
Home Office refuses to answer questions from Lords over technical capability notice issued against Apple’s iCloud Advanced Data Protection encryption services First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366621785/Apple-devices-are-at-most-risk-in-UK-following-government-backdoor-order
-
Google to Switch on E2EE for All Gmail Users
Google is set to roll out end-to-end encryption for all Gmail users, boosting security, compliance and data sovereignty efforts First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/google-switch-e2ee-all-gmail-users/
-
7 Wege, Daten (besser) zu verschlüsseln
Tags: ai, blockchain, business, crypto, dns, encryption, github, healthcare, infrastructure, nist, office, privacy, software, updateVerschlüsseln Sie Ihre Daten zeitgemäß?Das Konzept der Kryptografie existiert schon ein paar Hundert Jahre, wird aber von findigen Wissenschaftlern und Mathematikern immer weiter vorangetrieben. Im Rahmen dieser Entwicklungsarbeit hat sich gezeigt, dass Algorithmen noch viel mehr können, als nur Daten zu schützen: Sie sind auch in der Lage, komplexe Regeln durchzusetzen und die Zusammenarbeit zu…
-
Datenaustausch zwischen Europa und den USA ist nicht mehr sicher
Trumps Kündigungen beim haben drastische Folgen für die Datensicherheit zahlreicher europäischer Unternehmen. Organisationen, deren Daten auf amerikanischen Servern verarbeitet oder gespeichert werden, sollten schnellstmöglich neue Datenschutzkonzepte einführen. Mit modernen Encryption-Lösungen beispielsweise lassen sich diese Daten schnell und effektiv verschlüsseln und vor unbefugtem Zugriff, wie etwa durch amerikanische Behörden, schützen. […] First seen on netzpalaver.de Jump…
-
SandboxAQ Strengthens Leadership in Post-Quantum Security as NIST Approves HQC Algorithm
The National Institute of Standards and Technology (NIST) has officially added HQC (Hamming Quasi-Cyclic), co-invented by SandboxAQ, to its suite of post-quantum cryptographic (PQC) standards, the company announced today. HQC becomes the fifth algorithm selected by NIST in its ongoing effort to develop quantum-resistant encryption standards. Of the five, three will serve digital signature purposes,…
-
7 cutting-edge encryption techniques for reimagining data security
Tags: ai, computer, cryptography, data, dns, encryption, government, ibm, identity, nist, office, privacy, risk, software, technology, trainingPrivate information retrieval: Securing a database is fairly straightforward. Protecting the privacy of the users, however, is a bit more difficult. Private information retrieval algorithms make it possible for people to search the database for specific blocks of data without revealing too much to the database owner.This extra layer of protection relies on scrambling larger…
-
Die 10 häufigsten IT-Sicherheitsfehler
Von ungepatchten Sicherheitslücken bis hin zu unzureichenden Backups: Lesen Sie, wie sich die häufigsten IT-Sicherheitsfehler vermeiden lassen. Verschlüsselte Dateien und eine Textdatei mit einer Erpresser-Nachricht zeigen klar und deutlich: Ein Unternehmen ist einer Cyberattacke zum Opfer gefallen. Dabei ist das nur das Ende einer langen Angriffskette. Die Tätergruppe bewegt sich oft seit mehreren Wochen oder Monaten…
-
CoffeeLoader: A Brew of Stealthy Techniques
IntroductionZscaler ThreatLabz has identified a new sophisticated malware family that we named CoffeeLoader, which originated around September 2024. The purpose of the malware is to download and execute second-stage payloads while evading detection by endpoint-based security products. The malware uses numerous techniques to bypass security solutions, including a specialized packer that utilizes the GPU, call…
-
Securing Canada’s Digital Backbone: Navigating API Compliance
Tags: api, attack, authentication, best-practice, breach, compliance, cyber, data, detection, encryption, flaw, framework, governance, government, infrastructure, monitoring, regulation, risk, service, strategy, threat, vulnerabilityHighlights: Understanding Canadian API Standards: Key principles for secure government API development. Critical Importance of API Security: Why robust protection is vital for citizen data. Compliance and Trust: How adherence to standards builds public confidence. Key Security Considerations: Essential practices for Canadian organizations. Salt Security’s Alignment: How the Salt API Security Platform supports Canadian government…
-
ETSI Publishes New Quantum-Safe Encryption Standards
Standards body ETSI has defined a scheme for key encapsulation mechanisms with access control (KEMAC), enabling quantum-secure encryption First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/etsi-quantum-safe-encryption/
-
ETSI launches first post-quantum encryption standard
European telco standards body launches its first post-quantum cryptography cyber standard, covering the security of critical data and communications First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366621214/ETSI-launches-first-post-quantum-encryption-standard
-
Likely Chinese Hackers Infiltrated Asian Telecom for 4 Years
‘Weaver Ant’ Used Web Shell Tunneling and Hacked Routers to Evade Detection. An apparently Chinese cyber espionage operation lurked inside the network of an Asian telecom for four years, camouflaging its presence through nested encryption and lightweight web shells. Chinese hackers have been uncovered on the inside of telecom networks spanning the globe. First seen…
-
White House’s Operational Security Fail: No Signal Required
‘Encryption Can’t Protect You From Stupid,’ Says Leading Cryptographer We’re all human. Who among us hasn’t lost a thumb drive or added a journalist to a consumer-grade encrypted app group chat devoted to White House war planning and military operations? Still, some accidental data breaches pose a bigger risk than others. First seen on govinfosecurity.com…
-
Colt: Test zur quantengesicherten Verschlüsselung im optischen Netz abgeschlossen
Tags: encryptionFirst seen on datensicherheit.de Jump to article: www.datensicherheit.de/colt-abschluss-test-quantencomputer-verschluesselung
-
Neue VanHelsing-Ransomware breitet sich rasant aus
Tags: authentication, backup, blockchain, dark-web, encryption, extortion, governance, government, linux, ransomware, service, usa, windowsDas neue Ransomware-Programm VanHelsing zielt auf Windows-, Linux-, BSD-, ARM- und ESXi-Systeme.Das neue RaaS-Projekt namens VanHelsing wurde erstmals am16. März von Forschern von CYFIRMA entdeckt, als Angreifer es für Verschlüsselung und doppelte Erpressung nutzten. Da es für Ziele der Gemeinschaft Unabhängiger Staaten (GUS) verboten ist, gehen die Security-Spezialisten davon aus, dass die Hintermänner aus Russland…