Collaborate Disseminate
Mozilla, in partnership with Facebook, Cloudflare, and other IETF community members, has announced technical specifications for a new cryptographic protocol called “Delegated Credentials for TLS.”
Delegated Credentials for TLS is a new simplified way … Continue reading Explained: How New ‘Delegated Credentials’ Boosts TLS Protocol Security
NordVPN, one of the most popular and widely used VPN services out there, yesterday disclosed details of a security incident that apparently compromised one of its thousands of servers based in Finland.
Earlier this week, a security researcher on Twitt… Continue reading NordVPN Breach FAQ – What Happened and What’s At Stake?
With claims of internet traffic encryption levels at 95% and cloud communications up to 100%, it’s increasingly difficult to see malicious activities happening on our networks. Encryption is a good thing, of course, until it hides nefarious netw… Continue reading DevOps Chat: Decrypting Next Gen TLS, With Nubeva
There is a seismic shift happening in the cloud. Two great, tectonic forces of change are colliding and creating unprecedented disruption for security, DevOps and cloud professionals. Ultimately, this shift has prompted the evolution of how to gain ou… Continue reading A Seismic Shift for Decrypted Visibility in the Cloud
Mozilla has finally introduced a mechanism to let Firefox browser automatically fix certain TLS errors, often triggered when antivirus software installed on a system tries to intercept secure HTTPS connections.
Most Antivirus software offers web secur… Continue reading Firefox to Automatically Trust OS-Installed CA Certificates to Prevent TLS Errors
All major web browsers, including Google Chrome, Apple Safari, Microsoft Edge, Internet Explorer, and Mozilla Firefox, altogether today announced to soon remove support for TLS 1.0 (20-year-old) and TLS 1.1 (12-year-old) communication encryption protoc… Continue reading Chrome, Firefox, Edge and Safari Plans to Disable TLS 1.0 and 1.1 in 2020
Facebook has open sourced Fizz—a library designed to help developers implement TLS 1.3 protocol with all recommended security and performance related configurations.
Since late last month, Google Chrome web browser has started marking all non-HTTPS we… Continue reading Facebook Open Sources Fizz — TLS 1.3 Library For Speed and Security
No doubt your Internet Service Provides (ISPs), or network-level hackers cannot spy on https communications.
But do you know — ISPs can still see all of your DNS requests, allowing them to know what websites you visit.
Google is working on a new security feature for Android that could prevent your Internet traffic from network spoofing attacks.
Almost every Internet activity starts with a
Continue reading Google to add “DNS over TLS” security feature to Android OS
OpenSSL has released a series of patches against six vulnerabilities, including a pair of high-severity flaws that could allow attackers to execute malicious code on a web server as well as decrypt HTTPS traffic.
OpenSSL is an open-source cryptographi… Continue reading High-Severity OpenSSL Vulnerability allows Hackers to Decrypt HTTPS Traffic
A new deadly security vulnerability has been discovered in OpenSSL that affects more than 11 Million modern websites and e-mail services protected by an ancient, long deprecated transport layer security protocol, Secure Sockets Layer (SSLv2).
Dubbed… Continue reading DROWN Attack — More than 11 Million OpenSSL HTTPS Websites at Risk