Conditional code considered cryptographically counterproductive.
Author: Paul Ducklin
Reddit is suggesting three tips as a follow-up to this breach. We agree with two of them but not with the third...
Latest epsiode. Listen now!
7 memory mismanagements and a timing attack. We explain all the jargon bug terminology in plain English...
To borrow from HHGttG, please DON'T PANIC. But if you are two years out of date with patches, please do ACT NOW!
Hear renowned cybersecurity author Andy Greenberg's thoughtful commentary about the "war on crypto" as we talk to him about his new book...
It's a bug fix for a bug fix. A memory leak was turned into a double-free that has now been turned into correct code...
Latest episode - listen now!
Is it a vulnerability if someone with control over your account can mess with files that your account is allowed to access anyway?
There was a breach, so the bad news isn't great, but the good news isn't too bad...