Threat Post

Microsoft Warns Customers Away From SHA-1 and RC4

The RC4 and SHA-1 algorithms have taken a lot of hits in recent years, with new attacks popping up on a regular basis. Many security experts and cryptographers have been recommending that vendors ...
Infosecurity-magazine.com

Has HTTPS been broken?

According to a research team from Royal Holloway University London (RHUL) and the University of Illinois at Chicago, when RC4 encryption (long known to be weak) is used as part of TLS/SSL (that is, ...

Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting”

A prominent US senator has called on the Federal Trade Commission to investigate Microsoft for “gross cybersecurity ...
Bleeping Computer

U.S. Senator accuses Microsoft of “gross cybersecurity negligence”

The RC4 encryption algorithm is still an option in Kerberos, despite being a weak cipher with vulnerabilities that allow recovering plaintext information. It is worth noting that Microsoft pledged to ...