Over the last few years, a worryingly number of attacks against SSL/TLS and other secure channels have been discovered. Fortunately, at least from a defenders perspective, these attacks require an adversary capable of observing or manipulating network traffic. This prevented a wide and easy exploitation of these vulnerabilities. In contrast, we introduce HEIST, a set of techniques that allows us to carry out attacks against SSL/TLS purely in the browser. More generally, and surprisingly, with HEIST it becomes possible to exploit certain flaws in network protocols without having to sniff actual traffic.
Cybersecurity software firm to announce transaction level biometric enhancements to its groundbreaking REL-ID technology.
CHATHAM, NJ – October 19, 2016 – Uniken is a cybersecurity firm that makes connecting safe, simple, scalable with its core offering, REL-ID. REL-ID is a unique family of solutions built on its patented security protocol that binds identity and channel to ensure that user, application, and device posture and identity are verified before access to applications is granted. Uniken is demonstrating its solutions at the 2016 Money 20/20 conference being held October 23, at The Venetian in Las Vegas.
CHATHAM, NJ, October 17, 2016 — Uniken, Inc today announced it has joined the FIDO (“Fast Identity Online”) Alliance, a cross-industry coalition developing open, interoperable authentication standards that reduce reliance on passwords with authentication that is more secure, private and easier to use.
Security researchers at the Dutch University of Leuven demonstrated a new cyber attack technique that has experts stumped. What makes this technique so scary is that it identifies a vulnerability at the core protocol level of all of today ’s secure online traffic. What’s worse is that there are no patches, no fixes, no short term solutions. This hack is here to stay.
With daily headlines announcing new cyberthreats from phishing, spoofing, social engineering, and the like, it should come as no surprise that one of the oldest technologies out there, SMS or “text-messaging,” is finally coming under attack by regulators.