Tag

security

Browsing

We are rapidly evolving into a digital and decentralized society, where private keys on mobile devices will play a critical and indispensable role in ensuring the safety of our daily transactions and securing our digital identities. FIX Network are aiming to revolutionize the blockchain and cellular industries by providing mobile device users with innovative key holder and transaction security, coupled with a practical user experience. The underlying technology for securing the user’s private keys are the SIM cards used by mobile operators, enabled by the FIX Network open-source STK residing on those SIM cards. This standard SIM hardware, together with blockchain- powered, distributed policy engines that govern end-user transactions, form the architectural backbone of the FIX Network security solution. This solution introduces the concept of a pool of SIM cards, enhancing security, and at the same time, eliminating the possibility of a single point of failure. Multiple SIM…

Tim Berners-Lee, the tech pioneer who invented the World Wide Web back in 1989, revealed his plans for a contract to ensure that the Internet is safe and accessible to everyone. Speaking at the Web Summit 2018 in Portugal, the British tech genius recounted how he envisaged the Internet as being a platform for sharing information, but the current use of the Internet has digressed from the initial vision that its founders had in mind almost 30 years ago. “All kinds of things have gone wrong. We have fake news, we have problems with privacy, we have people being profiled and manipulated,” expressed Berners-Lee with concern. The tech pioneer has invited governments, companies and citizens to fight against hate and negativity, breach of privacy and political manipulations on the Internet by creating a complete “Contract for the Web” by May 2019, the date by which half of the…

The UK’s Information Commissioner’s Office (ICO) has issued Facebook a penalty notice requiring the payment of £500,000 due to “a very serious data incident”. The fine is the maximum that can be imposed under the United Kingdom’s Data Protection Act 1998, which was the ruling document when the incidents occurred. “We considered these contraventions to be so serious we imposed the maximum penalty under the previous legislation. The fine would inevitably have been significantly higher under the GDPR. One of our main motivations for taking enforcement action is to drive meaningful change in how organisations handle people’s personal data,” commented the UK’s Information Commissioner, Elizabeth Denham. The data breach incidents occurred between 2007 and 2014, when Facebook failed to properly monitor the developers using the Facebook platform to build apps, and allowed them access to user information without clear consent. This particular case concerned Aleksandr Kogan and his…

After last week’s summit in Australia, the Five-Eyes Governments, which include the United States, the United Kingdom, Canada, Australia and New Zealand, issued a statement calling on the technology industry to willingly provide access to encrypted information. While encryption is by far the safest way for private information to travel between the sender and receiver, the Five-Eyes group argue that it can also be “used by criminals, including child sex offenders, terrorists and organized crime groups to frustrate investigations and avoid detection and prosecution.”  Even though the debate of privacy versus security when it comes to data encryption is not a new one, many cybersecurity experts still claim that there is no safe way to provide authorities with a backdoor access to decoded information without introducing vulnerabilities that may be exploited by hackers. Despite this argument, the alliance is pushing technology providers to “create customized solutions, tailored to their individual…

While the storm caused by the GDPR coming into force on May 25th is quieting down, people are still concerned about the protection of their personal data, and privacy in general. In the current environment, the use of the word VPN is commonplace, yet not everyone understands this term and what it has to do with security. voip.review will provide some basic insights into VPNs. Simply put, the abbreviation VPN stands for Virtual Private Network, a connection method that helps users maintain security while connecting to another network over the Internet. The original idea for creating a VPN was to secure the private network of large corporations, where branch offices and employees need to connect to the network from remote locations. While connecting to the corporate network via cables installed in a local office is relatively safe, connecting to this private network through public networks can introduce security vulnerabilities due…

Security researchers from Rapid7 have found a large number of insecure UDP Internet services in Germany, which are used for VoIP. The researchers found nearly six million exposed SIP services on port 5060 / UPD, more than any other country in the world. The Session Initiation Protocol (SIP) is used to establish a communication session in Internet telephony and is particularly difficult to secure. Only encrypted SIP (SIP-TLS on port 5061 / TCP) provides adequate protection against active and passive eavesdropping and toll fraud, but plain text SIP is still widely used in Germany. This is demonstrated by Rapid7’s new National Exposure Index, an annual ranking that examines the extent to which countries around the world are at risk of active cyber attacks. For the study, Rapid7s security researchers scoured the entire Internet for TCP / IP services that, for example, are not secured with modern encryption methods or offer…