Vulnerability Spotlight: Multiple Remote Vulnerabilities In Insteon Hub PubNub

Cisco Talos is disclosing twelve new vulnerabilities in Insteon Hub, ranging from remote code execution, to denial of service. The majority of the vulnerabilities have their root cause in the… VISIT THE SOURCE ARTICLE Vulnerability Spotlight: Multiple Remote Vulnerabilities In Insteon Hub PubNub

Another Vulnerability In Intel CPUs – Dubbed Lazy FP State Restore

Hardware vulnerabilities seem to be much more prominent of late. Recently, another hardware vulnerability was found in Intel CPUs that Another Vulnerability In Intel CPUs – Dubbed Lazy FP State Restore on Latest Hacking News. VISIT THE SOURCE ARTICLE Another Vulnerability In Intel CPUs –…

Famous Fitness App PumpUp Leaked Health Data Of Its Users

After the data leaks by the popular parenting app TeenSafe, vulnerabilities are now being reported for fitness apps too. This PumpUp Fitness App Leaked Data And Private Messages Of Its Users on Latest Hacking News. VISIT THE SOURCE ARTICLE Famous Fitness App PumpUp Leaked Health…

Vulnerability Spotlight: Natus NeuroWorks Multiple Vulnerabilites

In April 2018, Talos published 5 vulnerabilities in Natus NeuroWorks software. We have identified 3 additional vulnerabilities in the Natus Xltek EEG medical products from Natus Medical Inc. VISIT THE SOURCE ARTICLE Vulnerability Spotlight: Natus NeuroWorks Multiple Vulnerabilites

Pretty Good Procedures for Protecting Your Email

A group of researchers recently released a paper that describes a new class of serious vulnerabilities in the popular encryption standard PGP (including GPG) as implemented in email clients. Until the flaws described in the paper are more widely understood and fixed, users should arrange…

PGP and EFAIL: Frequently Asked Questions

Researchers have developed code exploiting several vulnerabilities in PGP (including GPG) for email, and theorized many more which others could build upon. For users who have few—or even no—alternatives for end-to-end encryption, news of these vulnerabilities may leave many questions unanswered. Digital security trainers, whistleblowers,…

Disabling PGP in Outlook with Gpg4win

Researchers have developed code exploiting several vulnerabilities in PGP (including GPG) for email. In response, EFF’s current recommendation is to disable PGP integration in email clients. Disabling PGP decryption in Outlook requires running the Gpg4win installer again so that you can choose not to have…

Disabling PGP in Apple Mail with GPGTools

Researchers have developed code exploiting several vulnerabilities in PGP (including GPG) for email. In response, EFF’s current recommendation is to disable PGP integration in email clients. Disabling PGP decryption in Apple Mail requires deleting a “bundle” file used by the application. Your existing keys will…

Disabling PGP in Thunderbird with Enigmail

Researchers have developed code exploiting several vulnerabilities in PGP (including GPG) for email. In response, EFF’s current recommendation is to disable PGP integration in email clients. Disabling PGP decryption in Thunderbird only requires disabling the Enigmail add-on. Your existing keys will remain available on your…

Attention PGP Users: New Vulnerabilities Require You To Take Action Now

A group of European security researchers have released a warning about a set of vulnerabilities affecting users of PGP and S/MIME. EFF has been in communication with the research team, and can confirm that these vulnerabilities pose an immediate risk to those using these tools…