ZDNet

RC4 NOMORE crypto exploit used to decrypt user cookies in mere hours

A fresh warning concerning the use of RC4 to support secure communication channels online has been issued after researchers were able to exploit the protocol to decrypt user data in mere hours.

Microsoft starts with identification of insecure RC4 encryption

The Windows security updates from January herald the phase-out of insecure RC4 encryption. A vulnerability requires action.
Windows Report

Microsoft Starts New Kerberos Hardening Phase for Windows Domain Controllers

Microsoft rolls out new Kerberos protections to block RC4 encryption, with enforcement mode becoming mandatory for domain ...
Threat Post

Google, Mozilla, Microsoft to Sever RC4 Support in Early 2016

Google and Mozilla today announced they’ve settled on a timeframe to permanently deprecate the shaky RC4 encryption algorithm. Google, Microsoft and Mozilla today announced they’ve settled on a ...
VentureBeat

Google, Microsoft, and Mozilla will drop RC4 encryption in Chrome, Edge, IE, and Firefox next year

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Google, Microsoft, and Mozilla all made the ...
Threat Post

New RC4 Attack Dramatically Reduces Cookie Decryption Time

A paper, expected to be presented at USENIX, describes new attacks against RC4 that make plaintext recovery times practical and within reach of hackers. Two Belgian security researchers from the ...
Redmond Magazine

Windows Update Will Disable 'Broken' RC4 Encryption

A Microsoft update that will disable the compromised RC4 stream cipher on Windows systems was released on Tuesday. The update is described in Security Advisory 2868725, but it seems to have gone ...