A tiny but intriguing open source project entitled iCloudHacker attracted interest over the weekend.
It claims to "bypass Apple's theft protection" - and although that's streching the truth a bit, it has some lessons to teach us about encryption...
GitHub, one of the world's biggest online repositories of software source code, is warning users to jolly well shape up when it comes to login security.
Of course, GitHub isn't saying it quite like that (it is being more polite)...but we are!
Following a USENIX paper about the security of Windows Picture Passwords, you may have read that they are "easily crackable."
Paul Ducklin wondered about that, and tried to come up with a balanced view...
Here are all the winners in the recent BlackHat 2013 #sophospuzzle.
And, of course, an explanation of how to solve it.
Are cryptographic holes the new buffer overflows?
Take a look at this week's 60 Second Security video and let us know what you think!
Google just announced that its secure web pages will be ditching 1024-bit RSA keys in favour of 2048 bits.
We look at the lessons to be learned from whats, the whys and the wherefores of this change...
Why, and more importantly, *how*, would you go about weeding out rude passwords?
Surely an April Fool?
Paul Ducklin takes a look...
Jens Steube, author of the pasword cracking tool hashcat, can make your SHA-1 password cracking tool 25% faster.
Just like that.