Collaborate Disseminate
If your certificate gets revoked and you don’t renew it, visitors won’t be able to get to your site… Continue reading Why 3 million Let’s Encrypt certificates are being killed off today
Non-profit certificate authority (CA) Let’s Encrypt announced it will revoke more than three million digital certificates due to a software bug. On March 3, Let’s Encrypt revealed its plan to revoke 3,048,289 currently-valid certificates. T… Continue reading Let’s Encrypt Says It Will Revoke 3M Certificates Due to Software Bug
Starting with 20:00 UTC (3:00pm US EST), today (March 4), the non-profit certificate authority Let’s Encrypt will begin it’s effort to revoke a little over 3 million TLS/SSL certificates that it issued while a bug affected its CA software. … Continue reading Let’s Encrypt will revoke 3m+ TLS/SSL certificates
The most popular free certificate signing authority Let’s Encrypt is going to revoke more than 3 million TLS certificates within the next 24 hours that may have been issued wrongfully due to a bug in its Certificate Authority software.
The bug, which … Continue reading Let’s Encrypt Revoking 3 Million TLS Certificates Issued Incorrectly Due to a Bug
On Wednesday millions of Transport Layer Security certificates will be revoked because of a Certificate Authority Authorization bug. Continue reading Let’s Encrypt to Revoke Millions of TLS Certs
Thanks to this flood of free certificates, the web is a lot more encrypted than it was a few years ago. Continue reading Let’s Encrypt issues one billionth free certificate
The copycat sites are using valid certificates to be more convincing. Continue reading Holiday Shoppers Beware: 100K Malicious Sites Found Posing as Well-Known Retailers
Researchers create digital dossiers of mobile users scraped from Tor network traffic. Continue reading Unencrypted Mobile Traffic on Tor Network Leaks PII
Hackers with possible ties to an advanced persistent threat (APT) group are trying to steal usernames and passwords of Chinese government officials as part of an apparent cyber-espionage effort, according to findings provided exclusively to CyberScoop prior to scheduled publication Thursday. Researchers from the threat intelligence company Anomali have uncovered malicious websites with registrations dating back to November 2018 that impersonate email login pages from the Chinese Ministry of Foreign Affairs; China’s National Development and Reform Commission, an economic management agency under the State Council; and the National Aero-Technology Import and Export Corporation, a Chinese state-owned defense company. While it’s not clear who exactly is behind the effort, CyberScoop independently verified the findings with three external threat intelligence practitioners, two of whom said with confidence the attack resembles a nation-state effort. All three spoke only on the condition of anonymity because they were not authorized to speak to reporters. Upon […]
The post A phishing campaign with nation-state hallmarks is targeting Chinese government agencies appeared first on CyberScoop.
Venafi released research on the explosion of look-alike domains, which are routinely used to steal sensitive data from online shoppers. Venafi’s research analyzed suspicious domains targeting the top 20 retailers in five key markets: the U.S., U.K., Fr… Continue reading Explosion of look-alike domains aims to steal sensitive data from online shoppers