Subscribe to receive notifications of new posts:

Vulnerabilities

RADIUS/UDP vulnerable to improved MD5 collision attack

2024-07-09

The RADIUS protocol is commonly used to control administrative access to networking gear. Despite its importance, RADIUS hasn’t changed much in decades. We discuss an attack on RADIUS as a case study for why it’s important for legacy protocols to keep up with advancements in cryptography...

Continue reading »
RADIUS/UDP vulnerable to improved MD5 collision attack

MORE POSTS

October 14, 2023 12:00 AM

Malicious “RedAlert - Rocket Alerts” application targets Israeli phone calls, SMS, and user information

On October 13, 2023, Cloudflare’s Cloudforce One Threat Operations Team became aware of a malicious Google Android application impersonating the real-time rocket alert app, Red Alert, which provides real-time rocket alerts for Israeli citizens...

October 05, 2023 3:00 PM

Uncovering the Hidden WebP vulnerability: a tale of a CVE with much bigger implications than it originally seemed

Recently, Google announced a security issue in Google Chrome, titled "Heap buffer overflow in WebP in Google Chrome." Initially, it seemed like just another bug in the popular web browser. However, what we discovered was far more significant and had implications that extended wel...