National Security Agency reportedly intercepted encryption keys to eavesdrop on Internet traffic. NSA used several methods to bypass encryption, including exploiting software vulnerabilities, hacking into servers to steal keys. Enterprises can still retain control over their sensitive information by implementing encryption correctly, improving key management and auditing software for vulnerabilities. Experts: Despite NSA actions, there is no reason for enterprises to give up on encryption, experts say. Many organizations still rely on weak cryptographic algorithms, such as MS-CHAP, that are known to be vulnerable.”]
Source: https://www.cuinfosecurity.com/keeping-communication-secure-in-new-era-a-6052