Wednesday, June 3, 06:33
Home security EU: A patch has been released to fix vulnerabilities in the eIDAS system

EU: A patch has been released to fix vulnerabilities in the eIDAS system

eIDASThe European authorities have today released one patch for the eIDAS system, which is the abbreviation for electronic IDentification, Authentication and trust Services. The new patch fixes two major errors security. Hackers could use errors to represent themselves as European citizens or business representatives and make them illegal transactions.

EIDAS is a pretty complicated one system for secure management of electronic transactions and digital signatures between EU Member States, citizens and operational.

The eIDAS system was created in 2014. It is very useful because it allows EU governments, citizens, and businesses. conduct valid cross-border electronic transactions, regardless of country of origin.

The eIDAS-Node is the software that Europeans run users to servers for them to be able to do the transactions.

Therefore, any error in the software could cause many problems, since attackers could take advantage of it and violate digital transactions (eg tax payments, bank transfers, shipping of goods).

SEC Consult security researchers recently said they discovered two such errors that allowed hackers present themselves as European citizens or businesses.

According to the researchers, the software could not validate the certificates used in eIDAS transactions. So criminals could to falsify the certificate of any other citizen or business of eIDAS.

The attackers could access a Member State's eIDAS-Node server and use fake certificates during the initial authentication process.

Investigators conducted tests and found that the attack was feasible.

The European authorities have been informed of the vulnerabilities and a new update of the eIDAS-Node software has been released today. All Member States are urged to update their systems to avoid possible attacks.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Samsung Access: Samsung's new service for new Galaxy devices!

Samsung has launched a new subscription service for upgrades, starting with the Galaxy S20 series. The new service, named Samsung ...

Microsoft: The tools that will now be available to everyone!

Microsoft now has the "Virtual Assistant Accelerator" and "Bot Framework Composer" tools for its entire user base. Developers can ...

Sony: Cancel PS5 event due to Floyd case!

The event that Sony had planned for the PS5 on June 4 was postponed indefinitely, due to the deplorable situation that prevails ...

Cisco warns: These Nexus switches have been hit by a serious security flaw

Cisco has warned customers with Nexus switches running NX-OS software to install updates to address a serious flaw ...

Windows 10 May 2020 Update: Get Windows 10 for € 9.09

As we all know, Windows 10 May 2020 Update has been released. It is safer, more reliable and more efficient than ever. It is certain that with ...

Anonymous's hack includes data from previous leaks!

As protests over the death of George Floyd in Minneapolis have spread across the United States, cyberattacks have targeted police ...

Critical Exim errors have been fixed, but many servers are still at risk

The update of Exim mail servers is not fast enough and the members of the Russian hacker Sandworm team are actively exploiting three critical ...

New Cisco vulnerability that concerns you!

A new critical Cisco vulnerability has been identified that concerns you: For those who don't know, Cisco recently announced that some of the servers ...

Antifa tweets from extreme rightists call for violence!

The "Antifa tweets" that flooded Twitter and promoted violence, actually came from a well-known far-right group! The information came in ...

Apple introduces the new USB-C Diagnostic Tool

Apple introduces the new USB-C Diagnostic Tool. See the new features: Apple finally brings the new internal USB-C Diagnostic Tool, ...