Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

3 headlines in this view

Showing 3 most recent headlines Filtered view

Naked Security 3 years ago

Serious Security: That KeePass “master password crack”, and what we can learn from it

Here, in an admittedly discursive nutshell, is the fascinating story of CVE-2023-32784. (Short version: Don't panic.)

Naked Security 1 Jun 2023, 5:39 a.m. CVE-2023-32784 CVE

Naked Security 3 years, 3 months ago

Serious Security: GnuTLS follows OpenSSL, fixes timing attack bug

Last week, we wrote about a bunch of memory management bugs that were fixed in the latest security update for the popular OpenSSL encryption library. Along with those memory bugs, we also reported on a bug dubbed CVE-2022-4304: Timing Oracle in RSA Decryption. In this bug, firing the same encrypted message over and over again […]

Naked Security 14 Feb 2023, 6:59 a.m. CVE-2022-4304 CVE Encryption Fixed Library OpenSSL Oracle RSA Security Update

Naked Security 4 years, 2 months ago

Google Chrome patches mysterious new zero-day bug – update now

CVE-2022-1096 - another mystery in-the-wild 0-day in Chrome... check your version now!

Naked Security 29 Mar 2022, 3:18 a.m. Actively exploited CVE-2022-1096 0-Day CVE Chrome Google Patch

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available

Serious Security: That KeePass “master password crack”, and what we can learn from it

Serious Security: GnuTLS follows OpenSSL, fixes timing attack bug

Google Chrome patches mysterious new zero-day bug – update now