October 16, 2024 at 09:07AM Amazon reported that over 175 million customers now use passkeys for faster, passwordless sign-ins, enhancing security through cryptographic keys linked to biometric controls. The feature, initially introduced a year ago, is expanding to other services like AWS and Audible. The FIDO alliance has also announced a specification for portable passkeys. … Read more
October 15, 2024 at 04:54PM Amazon has reported that over 175 million customers now use passkeys, enhancing sign-in speed significantly. Passkeys function as biometric or PIN-based digital credentials, improving security against breaches. Amazon plans to extend this feature to other services, while the FIDO alliance has introduced a new specification for portable passkeys. **Meeting Takeaways: … Read more
July 26, 2024 at 05:24PM Millions of Intel and ARM-based computing systems are vulnerable to attackers due to a leaked cryptographic key used in the Secure Boot process. The issue, dubbed “PKFail,” allows bypassing of Secure Boot and affects devices from vendors like Lenovo, HP, and Asus. Firmware updates are needed to address this widespread … Read more
March 22, 2024 at 11:07AM The “GoFetch” attack targets modern Apple M-series CPUs’ constant-time cryptographic implementations, allowing it to steal secret cryptographic keys from the CPU’s cache. The attack, developed by researchers in the U.S., cannot be fixed in affected CPUs. Mitigating it with software patches would reduce cryptographic performance. Apple owners should practice safe … Read more
November 20, 2023 at 04:36AM Between 2011 and 2015, Bitcoin wallets are vulnerable to an exploit called Randstorm that allows unauthorized access. Approximately 1.4 million bitcoins may be affected. Customers can check if their wallets are at risk on www.keybleed.com. The vulnerability stems from the use of BitcoinJS, an open-source JavaScript package for cryptocurrency wallets. … Read more