Posts Tagged ‘encryption’

How to Prevent Your ISP from Snooping on You

Thursday, March 30th, 2017

Given recent changes in US internet privacy policies, this article is particularly timely (even though it appears to have been written before the change in policy took place.)

Internet Service Providers may be able to sell your web history in the United States without you giving your consent. The new ruling passed the US Senate and the House of Representatives already, and the last thing standing in its way is the President of the United States.


WhatsApp Security – Make This Change Right Now!

Friday, January 13th, 2017

Heads up, WhatsApp users; it’s time to adjust your security settings.

Security researchers found a backdoor in the popular messaging application WhatsApp recently that could allow WhatsApp to intercept and read user messages. Facebook, the owner of WhatsApp, claims that it is impossible to intercept messages on WhatsApp thanks to the services end-to-end encryption. The company states that no one, not even itself, can read what is sent when both sender and recipient use the latest version of the application.


Firefox 49 gets TLS 1.3 Support

Wednesday, June 22nd, 2016

I’d expect this trend will continue, as more and more applications switch over to TLS and SSL is gradually replaced.

Mozilla implemented support for the security protocol TLS 1.3 in Firefox 49 recently. TLS 1.3 is the most recent version of TLS (Transport Layer Security), the successor of SSL (Secure Sockets Layer). TLS is a cryptographic protocol used to improve communications security on the Internet.


Malwarebytes Anti-Ransomware Beta is Out

Tuesday, March 8th, 2016

Given Apple’s recent problems with Ransomeware, perhaps this is worth mentioning …

Malwarebytes Anti-Ransomware is a new product by security firm Malwarebytes designed to protect Windows systems against so-called ransomware attacks that has been released as a beta version to the public. Malwarebytes continues to expand its portfolio. After releasing Malwarebytes Anti-Exploit some time ago to complement the company’s popular Anti-Malware product for Windows, it has now released the first beta version of Anti-Ransomware.


Breaking Web – Mozilla Plans to Deprecate Non-Secure HTTP

Monday, May 4th, 2015

Yet another sign that HTTP may soon become a thing of the past …

Mozilla plans to make fundamental changes to the Firefox web browser in regards to non-secure HTTP contents on the web. According to a new post by Richard Barnes on the organization’s security blog, Mozilla plans to make new features only available to secure websites in the future and phase out features for non-secure sites gradually as well.


Check if Windows is Affected by the Freak Attack Vulnerability

Friday, March 6th, 2015

Another week, and another Windows vulnerability to worry about …

Freak Attack is the name of a new SSL/TLS vulnerability that came to light on March 3, 2015. The vulnerability can be exploited by hackers to weaken the encryption used between clients and servers when HTTPs connections are used. Affected are servers, according to a site that is tracking the issue 9.5% of Alexa’s top 1 million domain names but also web browsers such as Chrome, Safari and Internet Explorer.


Microsoft Sheds light on Windows 10 Security Improvements

Tuesday, October 28th, 2014

Hopefully, the improvements discussed here will eventually find their way into Windows 10 …

Microsoft hasn’t really revealed a lot about Windows 10 up to this day. While it has released a preview build of the operating system and a first update for it recently, one could still come to the conclusion that Windows 10 is like Windows 8 but with a start menu and the option to run apps in windows on the desktop. The company started to open up only recently and reveal additional information about Windows 10. It published a lengthy blog post today on the Windows For Your Business blog that details security improvements coming to the operating system.


List of TrueCrypt Encryption Alternatives

Friday, May 30th, 2014

Apparently, the security of the TrueCrypt website has been compromised. Don’t let that stop you though; here are some workable alternatives …

If you open the TrueCrypt website right now you are redirected to a page right now stating that TrueCrypt is not secure and recommending that you switch to Microsoft’s BitLocker. It is not clear why the message is displayed on the page, and rumors range from a sad goodbye message by the TrueCrypt authors to a hack or NSA intervention. As far as facts are concerned, we know the following: The new TrueCrypt 7.2 version has a valid signature that was used to sign older versions as well which may either mean that a key was stolen from a developer, or that a developer used the key to sign the new version.


No Backdoors Found in First Part of TrueCrypt Audit

Thursday, April 17th, 2014

Here’s an Open Source encryption solution for those concerned with privacy; it’s not perfect, but at least auditors weren’t able to find a backdoor (yet.)

The revelations of Edward Snowden’s leaks confirmed that security agencies spend time and money trying to undermine cryptographic software. Potential backdoors in cryptographic software or protocols would be disastrous, and that is one of the reasons why requests for audits became louder and more prominent. The Open Source encryption software TrueCrypt ran a fundraiser for a public TrueCrypt audit last year and managed to collect enough money to make that happen.

(more…) – German Email Provider Offering Full Inbox Encryption

Thursday, March 6th, 2014

Here’s yet another email provider that offers encrypted communication … and I’m pretty sure we’re going to see more of these in the future too. is a new email service by the German company Heinlein Support GMBH which features several interesting security and privacy related features, and based on Open-Xchange version 7.4.2. The homepage of the service is entirely in German, but the actual web mail interface is not. It is available in several languages including English, Spanish, Dutch, French and Italian. The only part of the web interface that is not available in other languages yet is the Settings > page.