Web servers around the world are at risk from a serious security vulnerability, dubbed the DROWN attack, which could allow hackers to steal private information.
Tag Archives | TLS
Is British intelligence service MI5 following best security practice on its website?
Or have they just scraped a C grade?
Researchers discover a new attack against encrypted communications on the internet.
Read more in my article on the Optimal Security blog.
Six months after the world was warned about the POODLE bug, some online banks don’t seem to have received the memo.
Phew! The high severity OpenSSL bug is not another Heartbleed, but a denial-of-service flaw instead.
Make sure you learn about it (and other vulnerabilities fixed) and take appropriate action.
Vulnerability in OpenSSL, the open-source software widely used to encrypt internet communications using SSL/TLS, is described as “highly serious”.
You know that Windows 8.1 update that you *must* install to get future updates? The one that if you choose not to install, you won’t get any future updates?
Well, it turns out that if you install that update you might actually *not* get any future updates. Oh dear.