On the 9th of November, the Aarhus company Cryptomathic was awarded the Initiative Prize by the regional division of DI (Confederation of Danish Industry).Read more
This article explains the Signature Activation Protocol in the context of eIDAS-compliant central signing. It sheds lights on its purposes and outlines its implementation for remote/central signature servers.Read more
Cryptomathic's partner and mobile security expert, ARXAN, have published the 5th annual State of Application Security Report, which takes an in-depth look into the security of some of the most popular mobile finance applications available today.
The report finds a huge discrepancy between consumer confidence regarding the level of security built into these apps, and the degree to which developers of these apps actually address known application vulnerabilities. For example, 86% of the surveyed app users feel their applications are adequately secure. Yet, more than 90% of the tested applications unveiled multiple vulnerabilities. Below is an infographic that highlights some of the key findings in the report.Read more
In 2009, the RBS WorldPay ATM network reportedly lost $9 million to a 30 minute fraud attack across 49 cities, in different countries, using just 100 cloned cards. On the face of it, the $9 million dollar yield from the attack is a large enough figure to make headline news, but perhaps not that shocking in this day and age where the total UK card fraud exceeded £500 million in the past year, according to APACS figures. What is possibly more serious in this particular scenario is the methodRead more