Reddit's Hack & The Risks of Phone-Based 2-Factor Authentication
by Reflare Research Team on Aug 6, 2018 3:11:00 PM
While it is clear that the 2FA implementation was not at fault here, there are significant risks associated with phone based 2FA that warrant serious consideration before you make this type of authentication method available to users. First Published 6th August 2018 r/LetsHackReddit 4 …
Dealing with the Increasingly Severe Cyber-Threat Landscape
by Reflare Research Team on Jul 27, 2018 3:08:00 PM
The severity of cyber attacks has increased at a rapid pace over the past several years. No longer is it just large companies that need to secure themselves from malicious actors; individual users now must consider how they can protect themselves too. First Published 27th July 2018 Th …
How Attacks are Escalated
by Reflare Research Team on Jul 20, 2018 3:06:00 PM
An attack takes place and either succeeds or fails. The reality however is more complicated. Attackers are often able to initially gain a minor foothold in the target and then over time leverage it into a more devastating attack. First Published 20th July 2018 Вверх, вверх, вверх! 3 m …
Hacked Hotel Keys - Current and Historical
by Reflare Research Team on Apr 27, 2018 2:13:00 PM
In a hotel room, the door lock forms the last line of defence against unauthorised access to a guest’s belongings. However, the F-Secure story of the “Hacked Hotel Keys” is way more complex and interesting. First Published 27th April 2018 I've got the key. I've got the secret. 4 min r …
Meltdown & Spectre
by Reflare Research Team on Jan 12, 2018 9:29:00 AM
Not a week goes by without yet another attack being disclosed that can allow an attacker to take over any unpatched system, steal data, access corporate networks, and all kind of other fun activities. Meltdown and Spectre are the newest members in a long line of similar attacks. First …
ROBOT Attack - Specification vs Implementation
by Reflare Research Team on Dec 15, 2017 7:05:00 PM
ROBOT is a new attack against TLS, the encrypted communications protocol used for browsing the web, sending email via Outlook, and many other everyday tasks that use encryption. First Published 15th December 2017 I, Robot. 4 min read | Reflare Research Team This week saw the release o …
KRACK, WPA2 & Unforeseen Behaviour
by Reflare Research Team on Oct 20, 2017 6:50:00 PM
There are some shocking headlines going around about a newly discovered security flaw called KRACK. But one of the biggest reasons for this panic is because many people are unaware that WPA and WPA2 have long been considered broken. First Published 20th October 2017 Removal of the pow …