Get Started Today!  (813) 749-0895    SEARCH SITE

IT Professional Services and Business Continuity

Symmetric Engineering Group Blogs

Why ROBOT is a Risk After Nearly 20 Years

Why ROBOT is a Risk After Nearly 20 Years

The Internet is rife with potential threats. Some are situational, but most are deliberate actions made by malicious entities who are trying to obtain any semblance of value from you or your company. Some of these exploits have been around longer than you’d imagine possible. This has been made evident by huge Internet-based companies such as PayPal and Facebook testing positive for a 19-year-old vulnerability that once allowed hackers to decrypt encrypted data.

Back in 1998, researcher Daniel Bleichenbacher found what is being called the ROBOT exploit in the secure sockets layer (SSL) encryptions that protect web-based platforms. There is a flaw in an algorithm that is responsible for the RSA encryption key--through specially constructed queries its error messages divulge enough information that after a short time they were able to decrypt ciphertext without the dedicated key for that encryption. In response, SSL architects created workarounds to limit error messages rather than eliminating the faulty RSA algorithm.

Referred to as an “Oracle” by researchers, the crypto-vulnerability provides only decisive yes and no answers, which allows people that form their queries a certain way to eventually retrieve detailed information about the contents of encrypted data. This is called an “adaptive chosen-ciphertext attack”.

Recently, researchers have found that over a quarter of the 200 most-visited websites essentially have this vulnerability, and about 2.8 percent of the top million. Facebook, the most visited website in the world for 2017, is one; while the money transfer platform PayPal is another. The explanation researchers gave was that with so much time focusing on the newest and baddest malware and exploits, this tried and true vulnerability has just been neglected. In a blog post they said as much:

“The surprising fact is that our research was very straightforward. We used minor variations of the original attack and were successful. This issue was hiding in plain sight. This means neither the vendors of the affected products nor security researchers have investigated this before, although it's a very classic and well-known attack.”

The vulnerability, now called ROBOT, an acronym for “Return of Bleichenbacher's Oracle Threat” was tested, with the findings being sent to the vulnerable sites to ensure they could get a patch created before the researchers went public with it.

Understanding the threats that are being used against businesses can go a long way toward helping you keep yours secure. For more information about the ROBOT vulnerability or what we can do to keep your company’s network secure, contact Symmetric Engineering Group today at (813) 749-0895.

Tip of the Week: Do You Know What Your Android Per...
Here’s Our Rundown on Blockchain Technology
 

Comments

Already Registered? Login Here
No comments made yet. Be the first to submit a comment

Search

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Tip of the Week IT Services IT Support Technology Best Practices Managed IT Services Cloud Business Computing Privacy Email Malware IT Infrastructure Management Hackers Hosted Solutions Business Continuity Internet IT Companies in Tampa Business Business Mobility IT Support Services Outsourced IT Data Backup Data Business IT Solutions Software Microsoft I.T. Management Productivity Network Security Managed Service Provider IT Professional Services Productivity Computer Custom Business Solutions Mobile Devices IT Management Tech Term IT Business Solutions Ransomware Business Applications Data Recovery Cloud Computing Innovation Technology Consultants Managed IT Service in Florida Business IT Support Google Managed IT Service Hardware Managed IT Internet of Things Windows 10 Android Managed Services in Florida I.T. Support Windows Disaster Recovery User Tips Communication I.T. Services Dynamic Solutions Backup IT Support Services in Tampa IT Risk Management Workplace Tips Browser Remote Monitoring Small Business Encryption Upgrade Collaboration Holiday IT Outsourcing in Tampa IT Support Smartphone IT Services in Florida Smartphones Data Management Artificial Intelligence IT Service Gmail Business Management Server IT Support in Tampa Network Microsoft Office Efficiency Save Money Managed Services Social Media VoIP Mobile Device Management Passwords Phishing BYOD App Mobile Device IT Managed Services Paperless Office Cybersecurity Managed IT Services Managed Services in Tampa Bay Windows 10 Employer-Employee Relationship Tech Companies in Tampa Customer Relationship Management BDR Applications Unified Threat Management Website IT Services in Tampa communications Office 365 Firewall Antivirus Operating System Tampa IT Support Bandwidth Bring Your Own Device Vendor Management Healthcare Content Filtering Computer Networking Tip of the week IT Outsourcing in Florida Government Wi-Fi Chrome Apple Data Computer Services IT Service Management IT Company Business Plan Word Two-factor Authentication Compliance IT Vendor Management Scam Project Management IT Outsourcing Vulnerability Business IT Support Services Small Business IT Solutions Facebook Risk Management Infrastructure Managed Service in Tampa Money SaaS Router Computer Hardware Repair Wireless Technology Retail Quick Tips WiFi Customer Service Managed Service Hosted Solution Information Document Management The Internet of Things Saving Money Remote Computing Office Data loss Analytics Mobile Computing IT solutions Data storage Storage Regulations Unified Communications Help Desk Miscellaneous Apps Telephone Systems IT Management Services Settings Big Data Automation IT Company Data Security Maintenance Robot Wireless Blockchain IBM Laptop Printing Administration Remote Workers End of Support Google Drive Uninterrupted Power Supply Alert Downtime Machine Learning Computer Network Services Mouse Licensing Computer Support Training I.T. Company Business Application Social Virtual Desktop Network Congestion Flexibility Computer Networking Services Redundancy How To YouTube Access Control HIPAA Patch Management Office Tips IoT File Sharing Computing Employees Digital Payment Server Management Search Internet Exlporer Virtualization Company Culture Network Management Users Monitors Budget User Error Files Tablet Spam Mobile Security IT Consulting Managed IT Outsourcing Assessment Virtual Private Network Outlook Solid State Drive Net Neutrality Recovery IT Support Helpdesk LiFi Smart Technology Virtual Reality Politics Information Technology Mobility Microsoft Virtual Server Hosting in Tampa and Florida Augmented Reality IT Companies in Florida Business Continuity Services Presentation Business Technology VPN IT Management Service Remote Monitoring and Management Tech Support E-Commerce Spyware Consulting Services Unified Threat Management Operations Managed Service in Florida Wires Human Error Health Care IT Services Knowledge Distributed Denial of Service Smart Tech IT Managed Service Provider Buisness Techology Language Vulnerabilities Authentication Intranet Outsourced Computer Support Fun Cyber Monday G Suite IT Consulting Service Health Corporate Profile Permissions Server Hosting in Tampa Enterprise Resource Planning Password Bookmarks Google Calendar Chatbots Help Desk Support Automobile WPA3 Financial Address IT Service in Tampa Jobs Notes Typing Lenovo Hard Drive Features USB Service IT Hacker Printer Wearable Technology Hacking Permission Shortcut Computers Business IT Solutions Experience Deep Learning Break Fix Connectivity Point of Sale Trending Disaster Resistance Computing Infrastructure Geography Authorization Servers Modem WannaCry Superfish Fraud Mobile Favorites Time Management Co-managed IT Legislation Identity Google Docs Fleet Tracking Undo Procurement Hard Disk Drive Electronic Medical Records Halloween Healthcare IT Cache Electronic Health Records IT Solutions for Small Business IT Support Companies in Tampa Save Time Test Software Tips Display Full Service IT Dark Web Samsung CIO Proactive IT Alerts Chromebook History High-Speed Internet User Software as a Service Cookies Managed it Services in Tampa Travel Cryptocurrency Humor Monitoring Domains Server Hosting IT Tech Support Hacks Best Practice Conferencing Identity Theft Comparison IT Vendor Management in Tampa Sync Business Growth Asset Tracking Competition Security Cameras Data Technology Scary Stories Recycling Cyberattacks Computer Care Firefox Microsoft Affiliate Program SharePoint IT Technicians IT Support and Solutions Private Cloud Backups Digital Signature MSP Hard Drives RMM Identities Data Warehousing VoIP Data Breach Cooperation Managed Services in Floirda Google Wallet Disaster Development Avoiding Downtime Zero-Day Threat Statistics Technology Tips Nanotechnology Managed Service Providers Bitcoin Star Wars Consulting Public Speaking Sports Computer Repair Networking Technology Consulting Firms Current Events Managing Stress Heating/Cooling Instant Messaging Touchscreen Server Hosting in Florida Specifications Social Networking Network Support in Florida Mobile Device Managment Business Continuity Service Providers OneNote Remote Worker Writing eWaste Read Only Microsoft Business Solutions Safety Marketing Downloads Mirgation IT Managed Service in Tampa Information Technology Consulting Legal Proactive Tech Terms Cabling Microsoft Excel Programming Managed Services Provider Digital Dark Data Technology Laws Staff IT Company in Tampa Websites Drones Gadgets Cables Backup and Disaster Recovery Google Maps Bluetooth Cortana Screen Reader Tech Company in Tampa Meetings Windows 8 Professional Service Utility Computing Hotspot Going Green Enterprise Content Management Finance Tampa IT Services Education Black Friday Motherboard Employee-Employer Relationship ROI Social Engineering Top IT Outsourcing Company Management Consultation Application Multi-Factor Security Migration Help Desk Support in Tampa IT Consulting Services Cost Management Theft Mail Merge Careers Alt Codes Taxes Upgrades Botnet Twitter Webcam Telephony Supercomputer I.T. Managament Tracking Saving Time Running Cable CrashOverride Lithium-ion Battery 3D Printing Emoji Processors Update IT Budget Black Market Managed Servers Work/Life Balance 5G Business Appplications Administrator Cleaning IP Address Relocation Regulation Web Server Thank You Law Enforcement Unsupported Software Mobile Office Notifications Cameras Congratulations Physical Security Hiring/Firing Motion Sickness Gadget Virus Emergency Staffing Mobile Data Error IT Consultant Refrigeration Personal Information CCTV How To Crowdsourcing Printers GPS Public Cloud Cybercrime

Latest Blog Entry

Are you a person that has traditionally written down things in notebooks? If you are, you probably have dozens of notebooks that are half filled with information, most of which you’ll look at sometime in the future and you’ll be reminded just how helpful that note would have...

Latest News

SEG Awarded Small Business of the Year Award!

Symmetric Engineering Group was awarded the Upper Tampa Bay Chamber Small Business of the Year Award for their understanding technical service and support throughout the Tampa Bay area

Read more ...

Account Login