Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Last week, Binance began enforcing jurisdiction-specific regulations requiring Personally Identifiable Information (PII) for certain crypto withdrawals and deposits (Binance US is not affected). These updates carry immediate operational and compliance implications for Fireblocks customers based in Japan, New Zealand, India, the UAE, Bahrain, South Africa, Poland, France, and Kazakhstan who transact with Binance.

In July 2024, Google introduced a new feature to better protect cookies in Chrome: AppBound Cookie Encryption. This new feature was able to disrupt the world of infostealers, forcing the malware developers to quickly modify their malware to adapt to the latest protections. In the new era of cookie protection, infostealer malware either need direct access to the Chrome process or to run with elevated privileges.

This blog is the second part of a two-part series on post-quantum cryptography (PQC). In Part 1, we explored how the Harvest Now, Decrypt Later (HNDL) strategy has moved from crypto-conspiracy theory to a real threat model. This follow-up dives into how forward-thinking enterprises are already operationalizing PQC in their day-to-day security efforts—and how your team can take practical steps to do the same before quantum risk becomes quantum reality.

Interested in learning more about cryptography but don’t know where to start? We break down the common cryptography terms in a simple and clear way, to help you understand how companies encrypt your data in a safe and secure way. From there, you can dive deeper into the world of cryptography and learn more about this important and fascinating concept.

A newly identified strain of commodity ransomware named Mamona has emerged in the cybercriminal underground. This threat diverges from typical ransomware-as-a-service (RaaS) models by functioning entirely offline, relying on custom-built cryptographic routines and deploying no external command-and-control (C2) infrastructure.

Encryption has become a vital data protection tool used by global governments, defense and enterprises. However, not all solutions use the same cipher techniques. Several encryption algorithms can be used to secure data with varying levels of security. To establish acceptable standards for encryption technologies utilized by the U.S. Government, the National Institute of Standards and Technology (NIST) published the Federal Information Processing Standards (FIPS) FIPS-140.

We have become so reliant on communicating on the Internet that sometimes we need to take a minute to consider how our data is being protected and whether what we send on the Internet is truly safe. While end-to-end encryption has become integral to protecting our data online, you may be thinking, can end-to-end encryption be hacked?

In today’s digital landscape, encrypted messaging apps are widely regarded as essential tools for secure communication. Businesses and individuals alike turn to platforms like Signal, WhatsApp, and Telegram to protect sensitive conversations from prying eyes. But how secure are these apps really? Are they truly attack-proof, or do they provide a false sense of security?