Major vulnerability patched in the EU’s eIDAS authentication system

European authorities have released today a patch for the eIDAS system. The patch fixes two security flaws that could allow an attacker to pose as any EU citizen or business during official transactions. eIDAS stands for electronic IDentification, Authentication and trust Services. It is a Read More …

Kazakh government will intercept the nation’s HTTPS traffic

Internet service providers (ISPs) based in Kazakhstan are being instructed to force their users to install government-issued root certificates on their devices to allow agencies to intercept web traffic. The increasingly-widespread Hyper Text Transfer Protocol Secure (HTTPS) refers to the transmission of Read More …

Hacker Breaks Into French Government’s New Secure Messaging App

A white-hat hacker found a way to get into the French government’s newly launched, secure encrypted messaging app that otherwise can only be accessed by officials and politicians with email accounts associated with the government identities. Dubbed “Tchap,” the end-to-end Read More …

India authorizes 10 agencies to intercept, monitor, and decrypt citizens’ data

On Thursday, the Indian government gave ten agencies the legal authority “to intercept, monitor or decrypt information generated, transmitted, received or stored in any computer.” The order, approved on December 20 by the Indian Ministry of Home Affairs, is an Read More …

Australia now has encryption-busting laws as Labor capitulates

Labor has backed down completely on its opposition to the Assistance and Access Bill, and in the process has been totally outfoxed by a government that can barely control the floor of Parliament. After proposing a number of amendments to the Bill, which Read More …

GCHQ details how law enforcement could be silently injected into communications

Two of the United Kingdom’s highest cyber officers have detailed how they believe law enforcement could access end-to-end encrypted communications. Written by Technical Director of the National Cyber Security Centre Ian Levy and Technical Director for Cryptanalysis for GCHQ Crispin Robinson, the Read More …

U.S. Chip Cards Are Being Compromised in the Millions

A full 60 million U.S. cards were compromised in the past 12 months. While 93 percent of those were EMV chip-enabled, merchants continued to use mag stripes. Chip-and-PIN technology has become the de-facto standard for in-person credit- and debit-card transactions Read More …

​NZ customs can now demand phone or laptop passwords

The New Zealand Customs Service this week received new powers at the country’s borders, including the ability demand a password off a passenger to search their “electronic device”. Customs officers have always been able to search a passenger’s laptop or Read More …