X-Force November 6, 2017

How Not to Store Passwords: SHA-1 Fails Again

3 min read - Symmetric key encryption, password hashing and SHA-1 are all ineffective ways to store passwords during the software development stage.

June 20, 2017

Hidden PHP Rootkits Unearthed, Putting Apache Modules at Risk

2 min read - A security researcher discovered how to create malicious Apache modules, giving cyberattackers a new way to tap into and control web servers.

February 27, 2017

Collision Attack Sounds the Death Knell for SHA-1 Cryptographic Function

2 min read - Google's announcement of the first-ever collision attack means the Secure Hash Algorithm 1 (SHA-1) is officially no longer secure.

November 21, 2016

Browsers to End SHA-1 Support in 2017

2 min read - Some of the biggest names in the web browser game — namely, Google, Microsoft and Mozilla — plan to stop accepting insecure SHA-1 certificates in 2017.

Banking & Finance September 30, 2016

Why Cryptography Is the New Gold for Banking and Blockchain

3 min read - Blockchain and Cryptography: The New Gold Standard Over the past 200 years, the role of gold in international trade has been undeniable as a means to standardize prices across currencies and secure payments across borders. Before 1875, global financial systems…

Software Vulnerabilities May 26, 2016

Browser Vendors Are Shutting Down SHA-1 Digital Certificates

2 min read - Web browsers are moving away from SHA-1 digital certificates, and organizations need to make sure they are in line with more secure measures.

Software Vulnerabilities November 18, 2015

A SHA-1 Certificate Will Fail Soon

2 min read - The SHA-1 certificate is still widely used, but it poses a number of cybersecurity issues and will likely cause a major problem soon.

October 22, 2015

Mozilla Talks Moved-Up End Date for SHA-1 Certs

2 min read - Mozilla is moving up the end date for vulnerable SHA-1 certificates, prioritizing security above convenience for millions of websites.