https – Page 13 – WindowsTechs.com

Pentagon’s websites need better security, Wyden says

Posted on May 23, 2018 by Zaid Shoorbajee

If you try visiting certain Department of Defense websites, like the one for Strategic Operations Command or the Navy’s Blue Angels, you might be met with a browser message telling you that your connection is not secure and that malicious actors could be trying to steal your information. Sen. Ron Wyden, D-Ore., wants the Pentagon to fix this issue. In a letter written to DOD Chief Information Officer Dana Deasy on Tuesday, Wyden calls for the department to implement proper encryption and protection on all of its public-facing websites. Wyden writes that a “small number” of DOD websites, such as the Army, Air Force and NSA homepages by default use trusted certificates and HTTPS encryption, the web protocol that ensures secure connections and prevents man-in-the-middle attacks. But many others, Wyden says, like the CIO’s own website, either don’t employ HTTPS or issue basic certificates. “Many mainstream web browsers do not consider these […]

The post Pentagon’s websites need better security, Wyden says appeared first on Cyberscoop.

Continue reading Pentagon’s websites need better security, Wyden says→

Detecting Malware/APT Through Automatic Log Analysis

Posted on May 23, 2018 by Fabio Palozza

Legacy perimeter security mechanisms can be evaded very easily. It’s disappointing, but it’s true. Innovatively-designed malware and APTs have the potential to evade even the strongest signature-based security solutions that are currently … Continue reading Detecting Malware/APT Through Automatic Log Analysis→

Chrome drops ‘secure’ label for HTTPS websites

Posted on May 21, 2018 by John E Dunn

When it comes to browser security, how important are the address bar icons and labels that tell users about a site’s security status? For Google at least, they matter a lot. Continue reading Chrome drops ‘secure’ label for HTTPS websites→

Chrome Will Drop the ‘Secure’ Connection Indicator Later This Year

Posted on May 18, 2018 by Lucian Constantin

Browsers historically have used certain visual indicators in the address bar to mark encrypted connections, such as the green padlock and the word “Secure.” However, as HTTPS is becoming the norm on the web, Google plans to phase out these… Continue reading Chrome Will Drop the ‘Secure’ Connection Indicator Later This Year→

As the Web moves toward HTTPS by default, Chrome will remove “secure” indicator

Posted on May 17, 2018 by Peter Bright

The browser is changing to flag the things that are dangerous, not the ones that are safe. Continue reading As the Web moves toward HTTPS by default, Chrome will remove “secure” indicator→

A week in security (May 7 – May 13)

Posted on May 14, 2018 by Malwarebytes Labs

A roundup of security news from May 7 – May 13, including a new zero-day for Internet Explorer, a Netflix phishing scam, a worm found in Facebook’s Messenger, and more.
Categories:

Security world
Week in security

Tags: 7zipfacebookfake an… Continue reading A week in security (May 7 – May 13)→

HTTPS: why the green padlock is not enough

Posted on May 9, 2018 by Pieter Arntz

Cheap hosting deals offering free certificates have made the green padlock a less convincing sign of security. Here’s what to look for to ensure a website is safe to visit.
Categories:

101
FYI

Tags: cacertificatesextended validationgreen padloc… Continue reading HTTPS: why the green padlock is not enough→

Millions of Apps Leak Private User Data Via Leaky Ad SDKs

Posted on April 17, 2018 by Tom Spring

Mobile apps leak personal data via insecure ads that transmit ad-targeting data insecurely. Continue reading Millions of Apps Leak Private User Data Via Leaky Ad SDKs→

Leaking ads

Posted on April 17, 2018 by Roman Unuchek

We found that because of third-party SDKs many popular apps are exposing user data to the internet, with advertising SDKs usually to blame. They collect user data so they can show relevant ads, but often fail to protect that data when sending it to their servers. Continue reading Leaking ads→

Mozilla Tests DNS over HTTPS: Meets Some Privacy Pushback

Posted on March 26, 2018 by Tom Spring

Mozilla is testing a method of securing DNS traffic via HTTPS, but is faced with some privacy resistance. Continue reading Mozilla Tests DNS over HTTPS: Meets Some Privacy Pushback→