Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

ROCA vulnerability (CVE-2017-15361) allows attackers to recover users Private RSA Keys

Roca-impact
ROCA vulnerability (CVE-2017-15361) allows attackers to recover users Private RSA Keys, billiondevices potentially impacted.

While security experts are discussing the dreaded KRACK attackagainst WiFi networks IT giants, includingFujitsu, Google, HP,Lenovo, andMicrosoft are warning their customers of a severe flaw in widely used RSA cryptographic library produced by German semiconductor manufacturer Infineon Technologies.

The vulnerability, tracked as CVE-2017-15361, affects the implementation of RSA key pair generation by Infineon’s Trusted Platform Module (TPM).

Infineon TPM is a dedicated microcontroller designed to secure hardware by integrating cryptographic keys into devices and helps to shield against unauthorized access to the data stored by improving the system integrity.

The vulnerability in Infineon’s Trusted Platform Module (TPM), dubbed ROCA (Return of Coppersmith’s Attack),was discovered by security researchers at Masaryk University in the Czech Republic.

The...(continued)

View All Trending Stories