•   
  •   
  •   

Technology Security bug could let attackers snoop on Wi-Fi traffic

13:15  27 february  2020
13:15  27 february  2020 Source:   cnet.com

Google sent 25% fewer phishing warnings last year

  Google sent 25% fewer phishing warnings last year In other words, the search giant says its protections against attackers appear to be working. But this isn't the time to lower your guard.The Threat Analysis Group (TAG) at Google reported Thursday on the decline of phishing attempts. Google says one of the reasons for the drop is protections against phishing, such as its Advanced Protection Program. While overall attempts are declining, Google says attacker are being more deliberate in their efforts to deceive targets.

A new security vulnerability called Krook could have let attackers intercept and decrypt some Wi - Fi traffic . The bug affected Wi - Fi chips from Broadcom and Cypress that are used in devices like phones and They estimate up to a billion devices could have been vulnerable to Krook. The good news?

Kr00k affects devices using Broadcom and Cypress Wi - Fi chips. Today, at the RSA 2020 security conference in San Francisco, security researchers from Slovak antivirus company Named Kr00k, this bug can be exploited by an attacker to intercept and decrypt some type of WiFi network traffic

A new security vulnerability called Krook could have let attackers intercept and decrypt some Wi-Fi traffic. The bug affected Wi-Fi chips from Broadcom and Cypress that are used in devices like phones and laptops , as well as some access points and routers, according to security researchers from antivirus firm ESET. They estimate up to a billion devices could have been vulnerable to Krook.

a close up of a sign: Broadcom and Cypress have already released updates to patch the Krook vulnerability. Graphic by Pixabay/Illustration by CNET © Provided by CNET Broadcom and Cypress have already released updates to patch the Krook vulnerability. Graphic by Pixabay/Illustration by CNET a close up of a sign: data privacy © Graphic by Pixabay/Illustration by CNET

data privacy

The good news? Broadcom and Cypress have already released updates to patch the vulnerability, according to ESET. The firm said it also worked with industry groups to make sure potentially affected parties, including device manufacturers, were aware of Krook.

Researchers discover that Intel chips have an unfixable security flaw

  Researchers discover that Intel chips have an unfixable security flaw Security researchers have discovered another flaw in recent Intel chips that, while difficult to exploit, is completely unpatchable. The vulnerability is within Intel's Converged Security and Management Engine (CSME), a part of the chip that controls system boot-up, power levels, firmware and, most critically, cryptographic functions. Security specialists Positive Technologies have found that a tiny gap in security in that module that could allow attackers to inject malicious code and, eventually, commandeer your PC. The vulnerability is another in a string of Intel chip flaws that have damaged the chipmaker's reputation of late.

An attacker can deploy a dedicated, rogue Wi - Fi pineapple to actively intercept packets by broadcasting a new Wi - Fi network for the sole purpose of Serving up the hypothetical attacker ’s own phishing pages and securing them with Let ’s Encrypt certificates should be easy enough.

A serious flaw threatens all Wi - Fi enabled devices, letting attackers snoop on encrypted traffic , stealing passwords and injecting malware. 16, 2017. A severe flaw in the encryption protocols used by nearly all modern Wi - Fi networks could let attackers hijack encrypted traffic , steal passwords

Before patches were issued, ESET researchers said they tested and confirmed that Krook impacted some devices from Amazon , Apple , Google , Samsung , Raspberry and Xiaomi , as well as access points from Asus and Huawei .

Broadcom and Cypress didn't immediately respond to requests for comment.

The exploit was detailed Wednesday by ESET researchers as part of the RSA security conference in San Francisco.

Gayle King Opens Up to Oprah About Kobe Bryant Interview Backlash: ‘It Was Very Painful' .
"We can disagree, and you can be mad at me even, but you can’t speak to me the way I was spoken to and threatened," Gayle King tells friend Oprah WinfreyOn Saturday, at the final, sold-out stop of Oprah Winfrey’s 2020 Vision: Your Life in Focus Tour in Denver, the CBS This Morning host had a one-on-one conversation with her best friend about the “very painful” situation.

—   Share news in the SOC. Networks

Topical videos:

usr: 11
This is interesting!