SSL – Page 16 – WindowsTechs.com

VU#475907: ShoreTel Mobility Client mobile application does not verify SSL certificates

Posted on January 3, 2017 by CERT

ShoreTel Mobility Client for iOS and Android,version 9.1.3.109 and earlier,fails to properly validate SSL certificates provided by HTTPS connections,which may enable an attacker to conduct man-in-the-middle(MITM)attacks. Continue reading VU#475907: ShoreTel Mobility Client mobile application does not verify SSL certificates→

VU#475907: Shoretel Mobility Client iOS application does not verify SSL certificates

Posted on January 3, 2017 by CERT

ShoreTel Mobility Client for iOS,version 9.1.2.101 and earlier,fails to properly validate SSL certificates provided by HTTPS connections,which may enable an attacker to conduct man-in-the-middle(MITM)attacks. Continue reading VU#475907: Shoretel Mobility Client iOS application does not verify SSL certificates→

Chris Conlon: Device Security 101

Posted on December 14, 2016 by Elliot Williams

We all wring our hands over the security (or lack thereof!) of our myriad smart devices. If you haven’t had your home network hacked through your toaster, or baby cam, you’re missing out on the zeitgeist. But it doesn’t have to be this way — smart devices can be designed with security in mind, and [Chris Conlon] came to Pasadena to give us a talk on the basics.

He starts off the talk with three broad conceptual realms of data security: data in transit, data at rest on the device, and the firmware and how it’s updated. A common thread …read more

Continue reading Chris Conlon: Device Security 101→

Paul’s Security Weekly #492 – Security News

Posted on December 13, 2016 by Paul Asadoorian

Old Linux and BSD code is vulnerable, your worst fears about IoT security are probably true, SSL-protected web sites, security for small businesses, and the hacking doomsday. All that and more in this week’s security news! Full Show Notes Take the Security Weekly Survey Subscribe to YouTube Channel Security Weekly Website Follow us on Twitter: Continue reading Paul’s Security Weekly #492 – Security News→

It’s the final countdown for SHA-1 SSL certificates

Posted on November 23, 2016 by Maria Varmazis

Apple, Microsoft, Google and Mozilla finally set roadmaps for deprecating venerable but outdated SHA-1 certificates Continue reading It’s the final countdown for SHA-1 SSL certificates→

We’re Winning The Crypto Wars

Posted on November 8, 2016 by Lorenzo Franceschi-Bicchierai for Motherboard

While the FBI and some governments are still fighting the Crypto Wars in courts and with laws, the spread of encryption appears unstoppable. Continue reading We’re Winning The Crypto Wars→

Half of Chrome Pageloads are HTTPS

Posted on November 4, 2016 by Michael Mimoso

Google said that more than half of pageloads on Chrome across platforms are encrypted; Android as the lone laggard, but trending upward. Continue reading Half of Chrome Pageloads are HTTPS→

Google to Make Certificate Transparency Mandatory By 2017

Posted on October 29, 2016 by Tom Spring

In a move to bolster security for the Chrome browser, Google sets a date for making Certificate Transparency mandatory for website owners. Continue reading Google to Make Certificate Transparency Mandatory By 2017→

Your SSL Secrets Uncovered

Posted on October 18, 2016 by psilva

Get Started with SSL Orchestrator SSL and its brethren TLS is becoming more prevalent to secure IP communications on the internet. It’s not just financial, health care or other sensitive sites, even search engines routinely use the encryption protocol. This can be good or bad. Good, in that all communications are scrambled from prying eyes […] Continue reading Your SSL Secrets Uncovered→

Free SSL Providers Spark Unprecedented Growth in Encrypted Traffic

Posted on October 17, 2016 by Michael Mimoso

For the first time, more than half of traffic on the Internet is encrypted, and experts say free SSL certificate providers are playing a big role. Continue reading Free SSL Providers Spark Unprecedented Growth in Encrypted Traffic→