Sicurezza

ICANN sets plan to reinforce internet DNS security

Pubblicato il

In a few months, the internet will be a more secure place.  That’s because the Internet Corporation for Assigned Names and Numbers (ICANN) has voted to go ahead with the first-ever changing of the cryptographic key that helps protect the internet’s address book – the Domain Name System (DNS).  [ Now see: The hidden cause of […]

Sicurezza

How to protect your infrastructure from DNS cache poisoning

Pubblicato il

Domain Name System (DNS) is our root of trust and is one of the most critical components of the internet. It is a mission-critical service because if it goes down, a business’s web presence goes down. DNS is a virtual database of names and numbers. It serves as the backbone for other services critical to […]

Sicurezza

Even weak hackers can pull off a password reset MitM attack via account registration

Pubblicato il

At the IEEE Symposium on Security and Privacy 2017, researchers from the College of Management Academic Studies in Israel presented an interesting paper on bad password reset processes, “The Password Reset MitM Attack” (pdf). It explains how a weak attacker could take over accounts by exploiting vulnerabilities in password reset procedures. They dubbed the attack: […]

Sicurezza

It’s time to upgrade to TLS 1.3 already, says CDN engineer

Pubblicato il

Businesses dragging their heels over rolling out TLS 1.2 on their website might have an excuse to delay a little longer: Version 1.3 of the TLS (Transport Layer Security) encryption protocol will be finalized later this year, and early deployments of it are already under way. TLS, the successor to SSL, is used to negotiate […]

Sicurezza

The modern guide to staying safe online

Pubblicato il

The internet can be a scary place. Threats come in many forms, lurking in practically any corner. Worse, yesterday’s prevailing advice for staying safe online — avoid dodgy websites, don’t traffic in stolen or illegal goods, interact only with people you know — no longer holds. Phishing emails from supposed family members, spyware piggybacking on […]

Sicurezza

8 ways to manage an internet or security crisis

Pubblicato il

Your business is hit with a ransomware attack. Or your ecommerce site crashes. Your legacy system stops working. Or maybe your latest software release has a major bug. These are just some of the problems that ecommerce, technology and other companies experience at one time or another. The issue is not if a problem – […]

Sicurezza

IDG Contributor Network: Artificial intelligence tool fixes password weakness

Pubblicato il

Flaws in passwords can be eliminated with artificial intelligence (AI), say researchers. This includes identifying common words that hackers know, too.  The mending is accomplished with AI-garnered analysis of existing insecure passwords, coupled with feedback to the user based on that. It makes password creation more reliable, say scientists from Carnegie Mellon University and the […]