A team of Finnish researchers has discovered that the files encrypted by the recently unearthed TorrentLocker ransomware can be decrypted without paying the ransom - if the user has at least one of the encrypted files backed up somewhere, and that file is over 2MB in size.
Phishers have started employing AES encryption to disguise the real nature of phishing sites from automatic phishing detection tools.
Google has announced that it will begin the process of gradually sunsetting SHA-1 (as used in certificate signatures for HTTPS) with Chrome 39, which is due to be released in November.
Security company F-Secure has created a tool that could help SynoLocker victims get their files back, but it only works if they have received - bought - the correct decryption key.
A group of researchers from Technion and Tel Aviv University have demonstrated new and unexpected ways to retrieve decryption keys from computers.