Get Started Today!  (813) 749-0895    SEARCH SITE

IT Professional Services and Business Continuity

Symmetric Engineering Group Blogs

Why ROBOT is a Risk After Nearly 20 Years

Why ROBOT is a Risk After Nearly 20 Years

The Internet is rife with potential threats. Some are situational, but most are deliberate actions made by malicious entities who are trying to obtain any semblance of value from you or your company. Some of these exploits have been around longer than you’d imagine possible. This has been made evident by huge Internet-based companies such as PayPal and Facebook testing positive for a 19-year-old vulnerability that once allowed hackers to decrypt encrypted data.

Back in 1998, researcher Daniel Bleichenbacher found what is being called the ROBOT exploit in the secure sockets layer (SSL) encryptions that protect web-based platforms. There is a flaw in an algorithm that is responsible for the RSA encryption key--through specially constructed queries its error messages divulge enough information that after a short time they were able to decrypt ciphertext without the dedicated key for that encryption. In response, SSL architects created workarounds to limit error messages rather than eliminating the faulty RSA algorithm.

Referred to as an “Oracle” by researchers, the crypto-vulnerability provides only decisive yes and no answers, which allows people that form their queries a certain way to eventually retrieve detailed information about the contents of encrypted data. This is called an “adaptive chosen-ciphertext attack”.

Recently, researchers have found that over a quarter of the 200 most-visited websites essentially have this vulnerability, and about 2.8 percent of the top million. Facebook, the most visited website in the world for 2017, is one; while the money transfer platform PayPal is another. The explanation researchers gave was that with so much time focusing on the newest and baddest malware and exploits, this tried and true vulnerability has just been neglected. In a blog post they said as much:

“The surprising fact is that our research was very straightforward. We used minor variations of the original attack and were successful. This issue was hiding in plain sight. This means neither the vendors of the affected products nor security researchers have investigated this before, although it's a very classic and well-known attack.”

The vulnerability, now called ROBOT, an acronym for “Return of Bleichenbacher's Oracle Threat” was tested, with the findings being sent to the vulnerable sites to ensure they could get a patch created before the researchers went public with it.

Understanding the threats that are being used against businesses can go a long way toward helping you keep yours secure. For more information about the ROBOT vulnerability or what we can do to keep your company’s network secure, contact Symmetric Engineering Group today at (813) 749-0895.

Tip of the Week: Do You Know What Your Android Per...
Here’s Our Rundown on Blockchain Technology
 

Comments

Already Registered? Login Here
No comments made yet. Be the first to submit a comment

Search

Mobile? Grab this Article!

Qr Code

Tag Cloud

Security Tip of the Week IT Services IT Support Best Practices Managed IT Services Technology Cloud Privacy Email IT Infrastructure Management Business Computing Malware IT Companies in Tampa Business Continuity Hackers Hosted Solutions Internet IT Support Services Business Mobility Business Business IT Solutions I.T. Management Microsoft Managed Service Provider IT Professional Services Outsourced IT Productivity Software Data Custom Business Solutions Data Backup Network Security Mobile Devices Computer IT Business Solutions Tech Term Business Applications IT Management Ransomware Technology Consultants Data Recovery Managed IT Windows 10 Productivity Managed IT Service in Florida Android Managed IT Service Business IT Support User Tips Windows Disaster Recovery Innovation Internet of Things I.T. Support Cloud Computing Managed Services in Florida Google Backup Workplace Tips Browser Dynamic Solutions I.T. Services Communication IT Support Services in Tampa IT Risk Management IT Outsourcing in Tampa IT Support Smartphone IT Services in Florida Data Management Remote Monitoring Hardware IT Support in Tampa Network Managed Services Encryption Artificial Intelligence Small Business Gmail IT Service App Collaboration Holiday IT Managed Services Smartphones Server Microsoft Office Cybersecurity Save Money Managed Services in Tampa Bay Efficiency Social Media Upgrade Phishing BYOD Business Management IT Services in Tampa Office 365 Mobile Device Firewall Paperless Office Tampa IT Support Vendor Management VoIP Tech Companies in Tampa Passwords Customer Relationship Management Website Applications Mobile Device Management Unified Threat Management Apple Word Two-factor Authentication Compliance IT Vendor Management IT Outsourcing Project Management Business IT Support Services Bandwidth Antivirus Operating System Small Business IT Solutions Facebook Risk Management Windows 10 Computer Networking Infrastructure Managed Service in Tampa Chrome Tip of the week IT Outsourcing in Florida Bring Your Own Device Government Content Filtering Data Computer Services BDR IT Service Management IT Company Business Plan Office Document Management Data loss IT solutions Data storage The Internet of Things Saving Money Remote Computing Unified Communications Vulnerability Miscellaneous Storage Regulations Analytics Mobile Computing Help Desk Settings Managed IT Services Telephone Systems Big Data IT Management Services IT Company Data Security Automation Money Robot Healthcare Employer-Employee Relationship Computer Hardware Repair Wireless Technology Wi-Fi SaaS Router Retail WiFi Hosted Solution Managed Service YouTube Flexibility Office Tips Redundancy IoT Computing How To Search communications HIPAA Patch Management Virtualization File Sharing Digital Payment Server Management Network Congestion Scam Internet Exlporer Network Management Spam Monitors Budget User Error Files Apps Tablet IT Consulting Mobile Security Solid State Drive Managed IT Outsourcing Recovery Assessment LiFi Virtual Private Network Information Technology Augmented Reality Business Continuity Services Presentation IT Support Helpdesk Smart Technology Maintenance Business Technology Wireless Outlook Virtual Reality Politics Mobility Microsoft Virtual Server Hosting in Tampa and Florida IT Companies in Florida VPN Blockchain Laptop IT Management Service Net Neutrality IBM Administration Google Drive Remote Workers Computer Network Services Mouse Quick Tips End of Support Computer Support Customer Service Uninterrupted Power Supply I.T. Company Machine Learning Licensing Information Virtual Desktop Alert Training Computer Networking Services Business Application Superfish Fraud Save Time Mobile Favorites Time Management Legislation Identity USB Healthcare IT Fleet Tracking Hard Disk Drive Samsung Cache Electronic Health Records History User IT Solutions for Small Business Access Control IT Support Companies in Tampa Cryptocurrency Humor Domains Software Tips Display Full Service IT CIO Dark Web Hacks Monitoring Best Practice Proactive IT Alerts Chromebook High-Speed Internet Business Growth Competition Scary Stories Software as a Service Cookies Managed it Services in Tampa Travel IT Tech Support Data Technology Users Server Hosting Backups Company Culture Conferencing Digital Signature Hard Drives Identity Theft Identities Comparison IT Vendor Management in Tampa Sync Asset Tracking Data Warehousing Google Wallet Recycling Cyberattacks Disaster Avoiding Downtime Computer Care Firefox Microsoft Affiliate Program SharePoint IT Technicians IT Support and Solutions Bitcoin MSP Public Speaking Technology Consulting Firms Current Events Star Wars Consulting Heating/Cooling VoIP Data Breach Cooperation Managed Services in Floirda Business Continuity Service Providers Development Statistics Sports Computer Repair Technology Tips Nanotechnology Managed Service Providers Writing Safety Marketing Networking Information Technology Consulting Legal Managing Stress Touchscreen Server Hosting in Florida Specifications Social Networking Network Support in Florida Mobile Device Managment OneNote Microsoft Excel Drones eWaste Read Only Gadgets Microsoft Business Solutions Cortana Downloads Mirgation IT Managed Service in Tampa Windows 8 Professional Service Proactive Programming Cabling Going Green Utility Computing Managed Services Provider Digital Dark Data Education Technology Laws Staff IT Company in Tampa Websites Cables Google Maps Bluetooth Screen Reader Tech Company in Tampa Meetings Social Engineering Hotspot IT Consulting Services Enterprise Content Management Cost Management Tampa IT Services Alt Codes Black Friday Motherboard Top IT Outsourcing Company Employee-Employer Relationship Management Consultation Knowledge Multi-Factor Security Migration Help Desk Support in Tampa IT Managed Service Provider Remote Monitoring and Management Tech Support Mail Merge Careers Printing E-Commerce Spyware Consulting Services Fun Unified Threat Management Operations Managed Service in Florida IT Consulting Service Wires Health Health Care IT Services Buisness Distributed Denial of Service Smart Tech Password Corporate Profile Techology Language Vulnerabilities Outsourced Computer Support Typing Cyber Monday Application G Suite Hacker Downtime Lenovo Permissions Server Hosting in Tampa Enterprise Resource Planning Bookmarks Hacking Experience Deep Learning Google Calendar Chatbots Help Desk Support Automobile WPA3 Address IT Service in Tampa Jobs Point of Sale Hard Drive Features Service IT Printer Wearable Technology Shortcut Computers Business IT Solutions Trending Break Fix Connectivity Intranet WannaCry Co-managed IT Disaster Resistance Computing Infrastructure Google Docs Geography Undo Servers Halloween Modem Social Electronic Medical Records IP Address Managed Servers Work/Life Balance Lithium-ion Battery Business Appplications Administrator Web Server Cleaning Relocation Regulation Mobile Office Law Enforcement Thank You Notifications Unsupported Software Hiring/Firing Private Cloud Cameras Physical Security Motion Sickness Emergency Gadget IT Consultant Refrigeration Congratulations Staffing Mobile Data Error Personal Information CCTV How To Virus Cybercrime Crowdsourcing Printers GPS Public Cloud Webcam Taxes Upgrades Botnet Twitter Telephony Saving Time Supercomputer Running Cable I.T. Managament Tracking Processors CrashOverride 3D Printing Emoji 5G Update IT Budget Black Market

Latest Blog Entry

Election Day in the United States is coming up quick on November 6th. It doesn’t matter what your thoughts or opinions on U.S. politics are--the fact remains that millions of Americans will be using the technology available at polling places to cast their ballots, and if thi...

Latest News

SEG Awarded Small Business of the Year Award!

Symmetric Engineering Group was awarded the Upper Tampa Bay Chamber Small Business of the Year Award for their understanding technical service and support throughout the Tampa Bay area

Read more ...

Account Login