Submission + - WPA2: Broken with KRACK. What now? (alexhudson.com) 1

tallackn writes: On social media right now, strong rumours are spreading that the WPA2 encryption scheme has been broken in a fundamental way. What this means: the security built into WiFi is likely ineffective, and we should not assume it provides any security.

The current name being seen for this is “KRACK”: Key Reinstallation AttaCK. If this is true, it means third parties will be able to eavesdrop on your network traffic: what should be a private conversation could be listened in to.

Submission + - Pentagon Turns to High-Speed Traders to Fortify Markets Against Cyberattack (wsj.com)

Templer421 writes: Dozens of high-speed traders and others from Wall Street are helping the Pentagon study how hackers could unleash chaos in the U.S. financial system.

The Department of Defense’s research arm over the past year and a half has consulted executives at high-frequency trading firms and quantitative hedge funds, and people from exchanges and other financial companies, participants in the discussions said. Officials described the effort as an early-stage pilot project aimed at identifying market vulnerabilities.

The Defense Advanced Research Projects Agency, or Darpa, began the initiative before the revelations of attacks on Equifax Inc. and the Securities and Exchange Commission brought public scrutiny of risks to U.S. market infrastructure.

Submission + - Ask Slashdot: Should I really be concerned about internal browser security?

Shadoefax writes: I use Firefox and have recently turned off automatic updates (don't want Fx v57 — I want all of my old extensions). People have said this is a bad idea because I won't be getting any security updates. I have McAfee antivirus installed and it is supposed to protect me from malicious web content.

My question is this: Is Firefox (or Chrome, Edge, IE, Opera, etc.) any better with security than using McAfee (or Symantec, Kaspersky, Avast!, etc.)? I know that Firefox only updates every six weeks or so, but my McAfee updates much more frequently.

Slashdot Top Deals