secure sockets layer – WindowsTechs.com

Rash Of Phishing Attacks Use HTTPS To Con Victims

Posted on May 26, 2017 by Tom Spring

Phishing sites are deploying freely available TLS certificates in order to dupe victims into thinking they’re visiting a safe site. Continue reading Rash Of Phishing Attacks Use HTTPS To Con Victims→

OpenSSL Update Fixes High-Severity DoS Vulnerability

Posted on February 21, 2017 by Tom Spring

US-CERT issues alert to server admins warning of a dangerous OpenSSL vulnerability and urges 1.1.0 users update to version 1.1.0e. Continue reading OpenSSL Update Fixes High-Severity DoS Vulnerability→

OpenSSL Update Fixes High-Severity DoS Vulnerability

Posted on February 21, 2017 by Tom Spring

US-CERT issues alert to server admins warning of a dangerous OpenSSL vulnerability and urges 1.1.0 users update to version 1.1.0e. Continue reading OpenSSL Update Fixes High-Severity DoS Vulnerability→

Firefox ready to block certificate authority that threatened Web security

Posted on September 27, 2016 by Dan Goodin

Mozilla says it has lost confidence in WoSign’s ability to protect HTTPS system. Continue reading Firefox ready to block certificate authority that threatened Web security→

HTTPS and OpenVPN face new attack that can decrypt secret cookies

Posted on August 24, 2016 by Dan Goodin

More than 600 sites found to be vulnerable to demanding exploit called Sweet32. Continue reading HTTPS and OpenVPN face new attack that can decrypt secret cookies→

New attack steals SSNs, e-mail addresses, and more from HTTPS pages

Posted on August 3, 2016 by Dan Goodin

Approach exploits how HTTPS responses are delivered over transmission control protocol. Continue reading New attack steals SSNs, e-mail addresses, and more from HTTPS pages→

New attack that cripples HTTPS crypto works on Macs, Windows, and Linux

Posted on July 26, 2016 by Dan Goodin

Hack can be carried out by operators of Wi-Fi hotspots, where HTTPs is needed most. Continue reading New attack that cripples HTTPS crypto works on Macs, Windows, and Linux→

“Forbidden attack” makes dozens of HTTPS Visa sites vulnerable to tampering

Posted on May 26, 2016 by Dan Goodin

Researchers say 70,000 servers belonging to others also at risk. Continue reading “Forbidden attack” makes dozens of HTTPS Visa sites vulnerable to tampering→

Aging and bloated OpenSSL is purged of 2 high-severity bugs

Posted on May 3, 2016 by Dan Goodin

Padding oracles and memory corruption threats caused by use of older schemes. Continue reading Aging and bloated OpenSSL is purged of 2 high-severity bugs→

More than 11 million HTTPS websites imperiled by new decryption attack

Posted on March 1, 2016 by Dan Goodin

Low-cost DROWN attack decrypts data in hours, works against TLS e-mail servers, too. Continue reading More than 11 million HTTPS websites imperiled by new decryption attack→