mitm

Detecting GnuTLS CVE-2020-13777 using Zeek

Detecting GnuTLS CVE-2020-13777 using Zeek

| | Apache, Corelight Labs, CVE-2020-13777, GnuTLS, mitm, Network Security, network security monitoring, network traffic analysis, network visibility, Open Source Community, openssl, pcap, Public Key Cryptography, TLS, TLS 1.2, TLS 1.3, Zeek
By Johanna Amann, Software Engineer, Corelight CVE-2020-13777 is a high severity issue in GnuTLS. In a nutshell, GnuTLS versions between 3.6.4 (released 2018-09-24) and 3.6.14 (2020-06-03) have a serious bug in their ...
Bright Ideas Blog
Best Tools for Testing Wi-Fi MITM Attacks

Best Tools for Testing Wi-Fi MITM Attacks

| | man in the middle attack, mitm, Network Security, Uncategorized, wi-fi security
A man-in-the-middle (MITM) attack is a highly effective type of cyber attack that involves a hacker infiltrating a private network by impersonating a rogue access point and acquiring login credentials. The attacker ...
SecureW2
certificates credentials

Digital Certificates vs Password Authentication

| | certificates, credential theft, education, man in the middle attack, mitm, Security threats, server certificate validation, wi-fi authentication
Businesses understand the importance of passwords for private data security, but might not realize that using a network with passwords poses many security threats. Every advancement in security technology is followed by ...
SecureW2
EAP-TTLS/PAP Authentication Protocol Is Not Secure

EAP-TTLS/PAP Authentication Protocol Is Not Secure

| | certificates, credential theft, EAP-TLS, encryption, mitm, Over-the-air, server certificate validation, TTLS-PAP, Uncategorized, wi-fi authentication
When designing a new network, there are countless features to consider that have a significant impact on the organization at large. Few functions of the network impact the users more than the ...
SecureW2
the process detailing how Equifax was hacked

Equifax’s Story: The Risks of Lax Security

| | certificates, credential theft, CRL, mitm, patches, security, SSL Certificates, SSL Inspection, Uncategorized
The post Equifax’s Story: The Risks of Lax Security appeared first on SecureW2 ...
SecureW2

Bad Actors Using MitM Attacks against ASUS to Distribute Plead Backdoor

| | backdoor, IT Security and Data Protection, Latest Security News, mitm, Plead
Researchers believe bad actors are using man-in-the-middle (MitM) attacks against ASUS software to distribute the Plead backdoor. Near the end of April 2019, researchers at ESET observed several attack attempts that both ...
The State of Security
Lenovo Watch X Pairing - A Little Too Easy

Your Lenovo Watch X Is Watching You & Sharing What It Learns

| | , BLE, Blog, bluetooth, Checkmarx Security Research Team, Internet of things, iot, Lenovo Watch X, mitm, smart watch, Sniffing, Technical Blog
A friend of mine offered me a Lenovo Watch X – which costs around €60 – in return for helping him with a security project. I was impressed with the design and ...
Blog – Checkmarx

Credential Theft Threats Facing SMBs

| | credential theft, Data breach, MFA, mitm, Multi-Factor Authentication, Over-the-air, Phishing, RADIUS, security, server certificate validation, sso, Uncategorized
The post Credential Theft Threats Facing SMBs appeared first on SecureW2 ...
SecureW2
device onboarding

How to Efficiently Onboard Thousands of Devices

| | EAP-TLS, education, mitm, onboarding, Over-the-air, RADIUS, server certificate validation, support tickets, wi-fi authentication, wpa2-enterprise
Each year, college campuses must navigate the trials associated with successfully connecting thousands of new students to the wireless network. This may have been moderately challenging 10 years ago, but the explosion ...
SecureW2
10 Tips to Take Control of Your Public Wi-Fi Security

10 Tips to Take Control of Your Public Wi-Fi Security

| | AppSec Tips & Best Practices, Blog, HTTPS, Man In The Middle, mitm, public Wi-Fi, public Wi-Fi security, public wireless security, ssl, virtual private network, VPN
The amazing ability to surf from anywhere sometimes distracts us from a very basic fact: the information may flow to us – but it can flow from us, in other, undesirable directions.So ...
Blog – Checkmarx
Load more