Top

Tag: SSL


Network security

Attackers Are Messing with Encryption Traffic to Evade Detection

May 16, 2019

Via: Dark Reading

Online attackers are trying to obscure their encrypted traffic in an attempt to evade detection, using a technique known as “cipher stunting,” according to Internet infrastructure and security firm Akamai. Cipher stuffing modifies the fingerprint of communications encrypted with secure […]


Malware, Phishing

Enterprises are blind to over half of malware sent to their employees

March 1, 2019

Via: Help Net Security

As the use of SSL grows to the point where it’s the standard protocol, cybercriminals are increasingly using encryption to conceal and launch attacks. This has become possible because SSL certificates, which used to be difficult to obtain, are now […]


Malware

6.8% of the top 100,000 websites still accept old, insecure SSL versions

December 12, 2018

Via: Help Net Security

Mac-based malware has appeared on the list of the top ten most common types of malware for the first time in WatchGuard’s quarterly Internet security report. The Mac scareware appeared in sixth place in WatchGuard’s latest Q3 2018 report and […]


Vulnerabilities

Stack Ranking SSL Vulnerabilities: DUHK and ROCA

November 3, 2017

Via: Security Week

Even with catchy branding and cute mascot and a theme song, these two SSL/TLS vulnerabilities nearly went unnoticed last week. The WPA2 Key Reinstallation Attack (KRACK) overshadowed them both, vacuuming up the tech media attention. DUHK and ROCA are both […]


Application security

How to prevent your mobile app from getting hacked

April 18, 2017

Via: CIO

Trivial matter? The average user has around 26 to 55 applications downloaded to his smartphone device. Most likely, you have entertainment and gaming apps, a banking app, a few social media apps, fitness apps, and eCommerce apps to shop at […]


Vulnerabilities

Flawed GoDaddy security certificates show need for control

January 13, 2017

Via: Computer Weekly

The forced revocation of nearly 9,000 security certificates by domain registrar and web hosting company GoDaddy has further underlined the need for organisations to have better control, say industry experts. A Secure Sockets Layer certificate (SSL certificate) is a small […]


Network security, Vulnerabilities

Knowing the Blind Spots

June 1, 2016

Via: TrendMicro Blog

A a lot of enterprises today are not fully prepared for securing or managing their blind spot “SSL traffic” into the network. Because SSL has traditionally been beyond the reach of network security systems it has become a serious security […]


Mobile security

iOS, OS X Library AFNetwork Patches MiTM Vulnerability

March 31, 2015

Via: mobile-security

Until yesterday, a popular networking library for #ios and OS X used in apps such as Pinterest and Simple was susceptible to #ssl man-in-the-middle (MiTM) attacks. The developer behind the framework AFNetworking on Thursday pushed a fix for the issue, […]