Why CSPs Should Care About Phishing

Con artists have been around since biblical times, but today they flourish. The Internet has provided the world with any-to-any communications and automation. In turn, these technologies have allowed the con-man to do with their illicit efforts what th… Continue reading Why CSPs Should Care About Phishing

Facebook to Pay $5 Billion Fine to Settle FTC Privacy Investigation

After months of negotiations, the United States Federal Trade Commission (FTC) has approved a record $5 billion settlement with Facebook over its privacy investigation into the Cambridge Analytica scandal.

The settlement will put an end to a wide-rang… Continue reading Facebook to Pay $5 Billion Fine to Settle FTC Privacy Investigation

BGP secure routing experiment ends in online row

An experiment to make the internet safer ended up breaking parts of it last week. Continue reading BGP secure routing experiment ends in online row

BGP secure routing experiment ends in online row

An experiment to make the internet safer ended up breaking parts of it last week. Continue reading BGP secure routing experiment ends in online row

Google DNS Service (8.8.8.8) Now Supports DNS-over-TLS Security

Almost every activity on the Internet starts with a DNS query, a key function of the Internet that works as an Internet’s directory where your device looks up for the server IP addresses after you enter a human-readable web address (e.g., thehackernews… Continue reading Google DNS Service (8.8.8.8) Now Supports DNS-over-TLS Security

The internet’s most important security protocol is finally moving forward

The long-simmering battle over the future of the internet’s most important security protocol is over: TLS 1.3 was approved by the Internet Engineering Task Force after over four years and 28 drafts of back and forth. TLS secures a huge swath of the internet. HTTPS-enabled websites, like the one you’re visiting, is possible thanks to TLS. TLS is also used to secure email, voice, video and messaging. The newest version, TLS 1.3, is the biggest change in the standard’s two decades of existence. The biggest battle of note over TLS 1.3 was prompted by a push from the Financial Services Roundtable to include and standardize interception so that banks and other data center owners could more easily decrypt connections in order to comply with regulations, implement data loss protection, detect intrusions and malware, capture packets, and mitigate denial of service attacks. Opponents called in an intentional weakness that could put the entire […]

The post The internet’s most important security protocol is finally moving forward appeared first on Cyberscoop.

Continue reading The internet’s most important security protocol is finally moving forward

Big banks want to weaken the internet’s underlying security protocol

The tech and financial industries are butting heads over the latter’s push to intentionally weaken a security protocol that underlies how the public securely accesses the vast majority of the internet. Critics are charging that the financial industry is pushing for a weakness in the new version of the Transport Layer Security (TLS) protocol, all for the sake of avoiding the time, effort and resources needs to adapt to the new standard. TLS is a bedrock internet security protocol used to secure everything from web browsing and email to instant messaging, voice, video and the internet of things. A new version, known as TLS 1.3, will usher in the largest changes in the protocol’s history. Contributors are hammering out the details before the update is likely finalized at the March meeting of the Internet Engineering Task Force (IETF), an independent group that designs internet standards. Heading into the meeting, the financial […]

The post Big banks want to weaken the internet’s underlying security protocol appeared first on Cyberscoop.

Continue reading Big banks want to weaken the internet’s underlying security protocol

Trump administration wants larger role in shaping international data laws

The Trump administration plans to take an increased role in shaping rules surrounding internet governance over the next year in the wake of various international security and privacy laws being enacted, according to White House Cybersecurity Coordinator Rob Joyce. Joyce, who spoke Monday at a Washington, D.C. cybersecurity conference, described how the “fragmentation of the internet” had created challenges for the U.S. government as well as multinational American businesses. Companies, Joyce explained, now face data storage compliance requirements while operating abroad in some countries, like China. In June 2017, the Communist Party of China issued legislation that calls on foreign companies doing business in China to use domestic data centers and also provide confidential records when requested by Chinese government officials. “While we’re all concerned about cybercrime and how our internet works, we’re also really concerned about other countries around the world really creating this convoluted patchwork of laws and regulations […]

The post Trump administration wants larger role in shaping international data laws appeared first on Cyberscoop.

Continue reading Trump administration wants larger role in shaping international data laws