Story image

AU & NZ: An event worse than Y2K, are you protected?

07 Sep 2016

On January 1st, 2017, an event significantly worse than Y2K will take place.

Over time, SHA-1 has become vulnerable and in January next year, browsers such as Google Chrome and Microsoft Explorer will start rejecting SHA-1 certificates.

Cyber security company Venafi is advising Australian and New Zealand businesses to migrate to SHA-2 before the expiry date, and before it’s too late.  

If you’re not already familiar, SHA-1 is one of several cryptographic hash functions, most often used to verify that a file has been unaltered.

Jeff Hudson, CEO of Venafi a market leading cyber security company, says the SHA-1 expiration will be 1,000 times worse than Y2K.

“People were ready and understood Y2K, even though it turned out to be a non-event,” states Hudson.

He explains that SH-1 was introduced back in 1995 but the internet was a very different place back then.

“Looking forward to now, computer power is far more advanced and SHA-1 is now known to be vulnerable to attack,” he explains.

“As technology progresses so must our security instruments,” he says.

Hudson explains that by the 1st of January, websites that haven’t migrated will not be authenticated properly.

“The effect will be that websites will not be trusted and the users will be notified of that. It will look very bad to web site visitors and will do brand and reputation damage,” he says. 

The cyber security CEO adds that there are three cryptographic mistakes businesses are making today.

Number one is not having viability on where their keys and certificates are located, the next is having zero automation in place to ensure certificates and keys don’t expire, and the third is not having the ability to move fast enough when something goes wrong.

“Any organisation needs to ensure their network is safe, and to ensure this is happening you need to have visibility on every certificate,” explains Hudson.

“This is impossible for humans to manage, because of the sheer volume of certificates and the speed at which changes occur. It requires a platform that can provide intelligent visibility and automate the secure lifecycle,” he says.

While it’s imperative that businesses migrate to SHA-2, Hudson says that it is a bit of an arduous task (but with obvious benefits).

“We are finding this is taking months for some companies. For many Venafi clients, the migration took place in a matter of days,” he says.

“SHA1 is a real threat, but people don’t understand and are not ready for the repercussions of what is going to happen on January 1st 2017.”

Apple's AirPods now come with 'Hey Siri' functionality
The new AirPods come with a standard case or a Wireless Charging Case that holds additional charges for more than 24 hours of listening time.
NZ investment funds throw weight against social media giants
A consortium of NZ funds managing assets worth more than $90m are appealing against Facebook, Twitter, and Google following the Christchurch terror attacks.
Poly appoints new A/NZ managing director, Andy Hurt
“We’re excited to be bringing together two established pioneers in audio and video technology to be moving forward and one business – Poly."
Unity and NVIDIA announce real-time ray tracing across industries
For situations that demand maximum photorealism and the highest visual fidelity, ray tracing provides reflections and accurate dynamic computations for global lighting.
NVIDIA announces Jetson Nano: A US$99 tiny, yet mighty AI computer 
“Jetson Nano makes AI more accessible to everyone, and is supported by the same underlying architecture and software that powers the world's supercomputers.”
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
NVIDIA introduces a new breed of high-performance workstations
“Data science is one of the fastest growing fields of computer science and impacts every industry."
Apple says its new iMacs are "pretty freaking powerful"
The company has chosen the tagline “Pretty. Freaking powerful” as the tagline – and it’s not too hard to see why.