Even after applying a Heartbleed patch, many websites are still vulnerable
Heartbleed received a ton of media attention, and for good reason -- the security flaw in OpenSSL caught the Internet with its collective pants down, which in turn prompted website owners, IT workers, and web admins to all go scrambling for a fix. Now that there's a patch available, are we once again safe? Not really, says AVG, According to AVG, thousands of popular websites need to update their servers to stay protected from a new vulnerability.
SanDisk's first attempt at offering a self encrypting SSD
If you take a look at SanDisk's product portfolio, you'll find a range of memory and storage devices, including various solid state drives. However, one thing you wouldn't have found prior to today is a self-encrypting SSD line. With the introduction of the SanDisk X300s, the company now has one to offer corporate environments in need of secure storage -- healthcare and financial services are two industries that come to mind.
Google has announced that Gmail will always use an encrypted HTTPS connection, encryption was implemented back in 2010 as a default option, for users sending and checking their email starting today. According to Google, this means that no one will be able to listen in if using Gmail on public Wi-Fi, phone, tablet, or computer.
If privacy is one of your main concerns online (and it very well should be given the goings-on lately), Twitter's latest move should please you considerably. The microblogging platform announced on Friday it has taken on "perfect forward secrecy" across its multiple platforms. It may sound a little hard to believe, but the aim is to keep outside organizations from snooping on encrypted traffic.
Who owns the Internet? That is one question humanity hasn’t been able to answer with any degree of certainty hitherto and things are unlikely to change anytime soon. Now, it may be difficult for us to say who truly controls the Internet, but we can definitely tell you who’s currently behaving like they are the ones who do.
The National Security Agency will, in most cases, be able to access your most private of online data if they want to. Google wants to make sure they aren't forced to comply with the many requests they receive for data, however, as they scramble to encrypt their data centers and protect the precious information -- probably including yours.
Remember when it was announced that SandForce 2000 series-based SSDs were only obscurifying data at 128-bit AES encryption, rather than the 256-bit protection promised? Turns out it doesn't matter, because a team of researchers recently managed to crack open a 278 digit, 923-bit long pairing-based cryptography system. That's a new world record and up until the time it happened, breaking cryptography that complex was thought to be impossible.
After being ordered to provide the decryption code for her laptop last month, a Colorado is claiming that she no-longer remembers the key. The laptop belonging to Ramona Fricosu was seized as part of a mortgage fraud case in 2010. The government has spent the last few years working to force her to decrypt the hard drive, claiming that doing so would not violate her 5th Amendment right not to incriminate herself.
Colorado U.S. District Judge Robert Blackburn has ordered a woman to decrypt her laptop so that prosecutors can pluck information from her notebook and use that information against her as part of a criminal case involving alleged bank fraud. The woman sought protection under the Fifth Amendment but was denied her request in what's shaping up to be a highly interesting case on a number of levels.
You can take off your aluminum foil deflector beanie, the bad guys aren't interested in what you have stored on your PC. That is, unless you work in the enterprise, in which case data thieves looking to swipe company secrets are a real threat. You may wish to know that Samsung's PM810 solid state drive (SSD) just attained Cryptographic Module Validation Program (CMVP) validation for conformance to the National Institute of Standards and Technologies (NIST) Federal Information Processing Standard (FIPS) 140-2 based on the drive model's heightened data security.