Browser makers cite coronavirus, restore support for obsolete TLS 1.0 and 1.1 encryption

Credit to Author: Gregg Keizer| Date: Fri, 03 Apr 2020 13:17:00 -0700

Google, Microsoft and Mozilla have each issued reprieves to Transport Layer Security (TLS) 1.0 and 1.1, aged encryption protocols that were to be bounced from browser support in March, because of the COVID-19 pandemic.

By common agreement, Google’s Chrome, Microsoft’s Internet Explorer (IE) and Edge, and Mozilla’s Firefox were to disable support for TLS 1.0 and 1.1 early in 2020. They, along with Apple – which produces Safari – announced the move a year and a half ago, noting then that the protocols had been made obsolete by TLS 1.2 and 1.3.

To read this article in full, please click here

Read more

Zoom pauses new feature development to focus on privacy, security

Credit to Author: Matthew Finnegan| Date: Fri, 03 Apr 2020 11:27:00 -0700

Zoom has decided to cease development of new product features so it can focus on fixing various privacy and security issues.

The company has seen a surge in the use of its platform in recent weeks, as self isolation in response to the Covid-19 pandemic ramps up the demand for video software. As its popularity has boomed – both for business and personal use – and the company’s stock price rocketed, underlying vulnerabilities in the platform have become apparent. 

“Zoom-bombing,” where intruders have been able to access video meetings that were not password protected, has led to serious privacy concerns, with uninvited attendees harassing online A.A. meetings and church meetings, for example. The FBI this week warned of unauthorized access to virtual classrooms and recommended that users change security settings to protect meetings. 

To read this article in full, please click here

Read more

This Week in Security News: More Than 8,000 Unsecured Redis Instances Found in the Cloud and Wiper Malware Called “Coronavirus” Spreads Among Windows Victims

Credit to Author: Jon Clay (Global Threat Communications)| Date: Fri, 03 Apr 2020 12:33:14 +0000

week in security

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about 8,000 Redis instances running unsecured in different parts of the world, even deployed in public clouds. Also, read about a new Windows malware, called “Coronavirus,”…

The post This Week in Security News: More Than 8,000 Unsecured Redis Instances Found in the Cloud and Wiper Malware Called “Coronavirus” Spreads Among Windows Victims appeared first on .

Read more

Using Zoom? Here’s how to keep your business and employees safe

Credit to Author: Bharat Mistry| Date: Thu, 02 Apr 2020 16:09:59 +0000

Cyber-criminals are always looking for new opportunities to make money and steal data. Globally trending events are a tried-and-tested way of doing just this, and they don’t come much bigger than the current Covid-19 pandemic. It’s sparking a wave of phishing, BEC, extortion, ransomware and data breach attempts. And as increasing numbers of global workers…

The post Using Zoom? Here’s how to keep your business and employees safe appeared first on .

Read more