ROCA – WindowsTechs.com

Weekly Cyber Risk Roundup: DDoS Attacks Hit Sweden, Researchers Warn of ROCA

Posted on October 23, 2017 by Jeff Peters

The Swedish Transportation Administration and other related agencies were among the week’s top trending cybercrime targets due to a series of distributed denial-of-service (DDoS) attacks that led to services being disrupted earlier this month. The DDoS attacks against the Swedish Transportation Administration affected all of its web-based systems, including the IT system that manages train orders,… Read More

The post Weekly Cyber Risk Roundup: DDoS Attacks Hit Sweden, Researchers Warn of ROCA appeared first on Security Boulevard.

Continue reading Weekly Cyber Risk Roundup: DDoS Attacks Hit Sweden, Researchers Warn of ROCA→

Threatpost News Wrap, Oct. 20, 2017

Posted on October 20, 2017 by Michael Mimoso

This week’s Threatpost News Wrap Podcast recaps the ROCA, KRACK and Boundhook attacks, as well as the release of Google Advanced Protection for Gmail. Continue reading Threatpost News Wrap, Oct. 20, 2017→

Bad RSA Library Leaves Millions of Keys Vulnerable

Posted on October 17, 2017 by Pedro Umbelino

So, erm… good news everyone! A vulnerability has been found in a software library responsible for generating RSA key pairs used in hardware chips manufactured by Infineon Technologies AG. The vulnerability, dubbed ROCA, allows for an attacker, via a Coppersmith’s attack, to compute the private key starting with nothing more than the public key, which pretty much defeats the purpose of asymmetric encryption altogether.

Affected hardware includes cryptographic smart cards, security tokens, and other secure hardware chips produced by Infineon Technologies AG. The library with the vulnerability is also integrated in authentication, signature, and encryption tokens of other vendors and …read more

Continue reading Bad RSA Library Leaves Millions of Keys Vulnerable→