Search

Search Keyword ssl Total: 50 results found.

Search Again

Search Result

  1. VeriSign certificates secure Microsoft Azure

    Category: Network Security & Hacking News/Latest Security News

    A couple of days ago we announced that Microsoft Azure will be using SSL and code signing certificates from VeriSign.... A couple of days ago we announced that Microsoft Azure will be using SSL and code ...
    Thursday, 19 November 2009

  2. Sun Alert 273029 Security Vulnerability in the Transport Layer Security (TLS) and Secure Sockets Layer 3.0 (SSLv3) Protocols Involving Handshake Renegotiation Affects OpenSSL

    Category: Network Security & Hacking News/Global Security News

    Product: Solaris 10, OpenSolaris A security vulnerability in the Transport Layer Security (TLS) and Secure Sockets Layer 3.0 (SSLv3) protocols in the handling of session renegotiations affects OpenSSL ...
    Wednesday, 18 November 2009

  3. Vuln: Multiple Citrix Products Unspecified SSL/TLS Certificate Spoofing Vulnerability

    Category: Network Security & Hacking News/Security Exploits and Security Patches

    Multiple Citrix Products Unspecified SSL/TLS Certificate Spoofing Vulnerability Read Full Article  ...
    Wednesday, 18 November 2009

  4. A Simplified Astaro UTM now FREE to businesses

    Category: Network Security & Hacking News/Latest Security News

    ... I'll show how it, and other free alternatives break, or stand up from an attack point of view.   On a site note, it works flawlessly with the iPhone ;-) - Use public wifi with no less fear, when ...
    Wednesday, 18 November 2009

  5. EV importance increasing on mobile

    Category: Network Security & Hacking News/Latest Security News

    ... EV SSL Certificates in the... Mobile devices continue to grow in importance as a platform for doing real business online. You may recall that the iPhone broke the EV glass as the first popular mobile ...
    Wednesday, 18 November 2009

  6. eWeek: Researcher Hacks Twittter Using SSL Vulnerability

    Category: Network Security & Hacking News/Latest Security News

    eWeek: Researcher Hacks Twittter Using SSL Vulnerability eWeek: Researcher Hacks Twittter Using SSL Vulnerability Read Full Article  ...
    Tuesday, 17 November 2009

  7. Protect Data or Get Fined

    Category: Network Security & Hacking News/Global Security News

    ... be introducing fines on comapnies and public bodies that recklessly or deliberately break the rules. Fines up to half a million may be imposed The Information Commisioners Office (ICO) or the privacy ...
    Tuesday, 17 November 2009

  8. More on the SSL renegotiation attack

    Category: Network Security & Hacking News/Latest Security News

    A researcher has published an exploit that uses the SSL renegotiation attack to compromise Twitter logins. That appears to run counter to earlier assessments that this exploit wasn't aimed at the accounts ...
    Tuesday, 17 November 2009

  9. The Register: Researcher busts into Twitter via SSL reneg hole

    Category: Network Security & Hacking News/Latest Security News

    The Register: Researcher busts into Twitter via SSL reneg hole The Register: Researcher busts into Twitter via SSL reneg hole Read Full Article  ...
    Monday, 16 November 2009

  10. HP: SSLv3/TLS Renegotiation Stream Injection

    Category: Network Security & Hacking News/Latest Security News

    HP: SSLv3/TLS Renegotiation Stream Injection HP: SSLv3/TLS Renegotiation Stream Injection Read Full Article  ...
    Monday, 16 November 2009

  11. Interesting Information Security Bits for 11/16/2009

    Category: Network Security & Hacking News/Latest Security News

    ... has put together a very nice document that describes and demonstrates the recent SSL/TLS vunerability. (Direct link to pdf) TLS and SSLv3 vulnerabilitys explained (PDF) Tags: ( ssl ) Jack makes some ...
    Monday, 16 November 2009

  12. Secret Security Operation Accidentally Exposed

    Category: Network Security & Hacking News/Latest Security News

    ... PhoneFactor, a phone security firm, discovered a problem with the SSL (Secure Sockets Layer) protocol that protects mail servers and Hackers are always trying to find flaws that they can exploit ...
    Monday, 16 November 2009

  13. New Study Provides Real-World Data on Leading Software Security Initiatives in Europe

    Category: Network Security & Hacking News/Latest Security News

    ... setting, updating, and maintaining the highest standards in software security,” said Janne Uusilehto, Head of Product Security, Nokia. “The insights gained from the BSIMM project will doubtlessly further ...
    Monday, 16 November 2009

  14. Password theft via vulnerability in SSL/TLS protocol

    Category: Network Security & Hacking News/Latest Security News

    The vulnerability in the design of the SSL/TLS protocol revealed earlier this month can apparently be used for practical attacks after all, such as stealing Twitter login data The vulnerability in the ...
    Sunday, 15 November 2009

  15. Vuln: Qt NULL Character CA SSL Certificate Validation Security Bypass Vulnerability

    Category: Network Security & Hacking News/Security Exploits and Security Patches

    Qt NULL Character CA SSL Certificate Validation Security Bypass Vulnerability Read Full Article  ...
    Sunday, 15 November 2009

  16. Computer World: Can the SSL vulnerability hurt you?

    Category: Network Security & Hacking News/Latest Security News

    Computer World: Can the SSL vulnerability hurt you? Computer World: Can the SSL vulnerability hurt you? Read Full Article  ...
    Friday, 13 November 2009

  17. Security Briefing – November 13th

    Category: Network Security & Hacking News/Latest Security News

    ... Heise Secure Sockets Layer (SSL) vulnerable to man-in-the-middle hacks – Last Watchdog The Problem with Browser Security – Andy, IT Guy Spam Campaign Targets Payment Transfer System ...
    Friday, 13 November 2009

  18. Vuln: ngIRCd SSL/TLS Support MOTD Request Multiple Denial Of Service Vulnerabilities

    Category: Network Security & Hacking News/Security Exploits and Security Patches

    ngIRCd SSL/TLS Support MOTD Request Multiple Denial Of Service Vulnerabilities Read Full Article  ...
    Thursday, 12 November 2009

  19. Scanning Windows 7 With Nessus 4.2

    Category: Network Security & Hacking News/Latest Security News

    ... guidelines, and 3 for the SSLF (Specialized Security Limited Functionality) guidelines. The above scan results represent the "EC Desktop" guidelines. The next logical question is, "Is there a way to ...
    Thursday, 12 November 2009

  20. An Information Security Place Podcast – Episode 27

    Category: Network Security & Hacking News/Latest Security News

    ... For 2008 Data Breach – Link Here Senator says the cybersecurity chief should be in DHS, not the White house – Link Here Major SSL Flaw Find Prompts Protocol Update – Link Here Jailbroken iPhones more ...
    Wednesday, 11 November 2009

  21. Security in a Reputation Economy

    Category: Network Security & Hacking News/Latest Security News

    ... the hassle of dealing with encryption, he knew that if he lost data from one customer, he risked losing all of his customers. As IT becomes more like infrastructure, more like a commodity, expect service ...
    Wednesday, 11 November 2009

  22. November 2009 Vulnerability Report

    Category: Network Security & Hacking News/Latest Security News

    November Vulnerability Report.This month, Alain Zidouemba talks about Microsoft Patch Tuesday, the SSL renegotiation flaw and the iPhone worm. November Vulnerability Report.This month, Alain Zidouemba ...
    Wednesday, 11 November 2009

  23. When Renegotiation is a Bad Thing: MITM Attacks on SSLv3/TLS Protocol

    Category: Network Security & Hacking News/Latest Security News

    Over the last few days, an attack against the SSLv3/TLS protocol was made public.  The following is my opinion based on public information and industry discussion. TLS is the current version of ...
    Wednesday, 11 November 2009

  24. techradar: Secret net security flaw exposed by accident "SSL isn't as perfect as we once thought, but they're working on it"

    Category: Network Security & Hacking News/Latest Security News

    techradar: Secret net security flaw exposed by accident SSL isn't as perfect as we once thought, but they're working on it techradar: Secret net security flaw exposed by accident "SSL isn't as perfect ...
    Tuesday, 10 November 2009

  25. OpenSSL 1.0.0 Beta 4 released

    Category: Network Security & Hacking News/Latest Security News

    The OpenSSL Project is a collaborative effort to develop a robust, commercial-grade, full-featured, and open source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Securi... ...
    Tuesday, 10 November 2009

  26. Application Security – Where It’s At

    Category: Network Security & Hacking News/Latest Security News

    ... BlogInfoSec.com, 2009. | Permalink | No comment | Add to del.icio.us Post tags: application security, application vulnerabilities, CSSLP, FSTC, OWASP, software assurance, spotlight Feed enhanced by ...
    Monday, 09 November 2009

  27. Tenable Network Security Podcast - Episode 11

    Category: Network Security & Hacking News/Latest Security News

    ... at Tenable. If you are in the job market or looking to advance your career this is not to be missed! Stories Major Flaw in SSL Released - Protocol Updated - This recent flaw could be used to perform ...
    Monday, 09 November 2009

  28. Best of Application Security (Friday, Nov. 6)

    Category: Network Security & Hacking News/Latest Security News

    ... Cross-subdomain Cookie Attacks PILOT: Production in lieu of testing (AgoraCart FAIL) Facebook and MySpace security: backdoor wide open, millions of accounts exploitable SSL and TLS Authentication Gap ...
    Friday, 06 November 2009

  29. HTTPS, SSL attack vector discovered; fix is on the way

    Category: Network Security & Hacking News/Latest Security News

    A security flaw that has been identified in the Transport Layer Security (TLS) protocol could open the door for man-in-the-middle (MITM) attacks against HTTPS communication. All implementations are said ...
    Friday, 06 November 2009

  30. Slashdot: Man-In-the-Middle Vulnerability For SSL and TLS

    Category: Network Security & Hacking News/Latest Security News

    Slashdot: Man-In-the-Middle Vulnerability For SSL and TLS Slashdot: Man-In-the-Middle Vulnerability For SSL and TLS Read Full Article  ...
    Thursday, 05 November 2009

  31. Vulnerability in TLS Protocol during Renegotiation [CVE-2009-3555]

    Category: Network Security & Hacking News/Global Security News

    A security vulnerability in the TLS protocol (TLS 1.0 or later and SSLv3) may allow an unauthenticated, remote attacker to conduct man-in-the-middle (MITM) type of attacks where chosen plain text may be ...
    Thursday, 05 November 2009

  32. Slashdot: Man-In-the-Middle Vulnerability For SSL and TLS

    Category: Network Security & Hacking News/Latest Security News

    Slashdot: Man-In-the-Middle Vulnerability For SSL and TLS Slashdot: Man-In-the-Middle Vulnerability For SSL and TLS Read Full Article  ...
    Thursday, 05 November 2009

  33. Interesting Information Security Bits for 11/05/2009

    Category: Network Security & Hacking News/Latest Security News

    ...  Tags: ( cheatsheet ) This is the author’s page regarding the SSL/TLS vulnerability just announced. It was a bit more reader friendly and promises to be so again, but the information is still there. ...
    Thursday, 05 November 2009

  34. Major vulnerability in SSL authentication

    Category: Network Security & Hacking News/Latest Security News

    Marsh Ray and Steve Dispensa of PhoneFactor discovered a serious vulnerability in SSL, the most common data security protocol on the Internet. The SSL Authentication Gap allows an attacker to mount a ... ...
    Thursday, 05 November 2009

  35. Vulnerability in SSL/TLS protocol

    Category: Network Security & Hacking News/Latest Security News

    According to reports, vulnerabilities in the SSL/TLS protocol can be exploited by attackers to insert content into secure connections. The cause is TLS renegotiation-related design flaws in the protocol ...
    Thursday, 05 November 2009

  36. FTC Says Bloggers Must Disclose Freebies

    Category: Network Security & Hacking News/Latest Security News

    ... for the legalese-disclaimer approach, try something catchy like “I shamelessly took a free widget from Acme Co. in exchange for this review,” or “I have sold my soul and this review to ...
    Wednesday, 04 November 2009

  37. Peer-to-Peer Goes Both Ways

    Category: Network Security & Hacking News/Global Security News

    We all know the dangers of peer-to-peer (P2P) networks and their role in distributing malware. Most people who deal with this problem work tirelessly to limit the impact of these potential threat points ...
    Wednesday, 04 November 2009

  38. The Pavlovian yes box

    Category: Network Security & Hacking News/Latest Security News

    ... take the blame too. It isn't until recently that people have started to do exactly what they are supposed to do and complain and make sure that all of their secured website links are SSL aware. Popular ...
    Monday, 02 November 2009

  39. Defeating Zombies: Five Ways To Improve Defenses

    Category: Network Security & Hacking News/Latest Security News

    ... techniques. Tried and true defensive measures such as firewalls, anti-virus software, Intrusion Detection Systems provide "operational security", but even if this is running flawlessly, it is typically ...
    Friday, 30 October 2009

  40. Microsoft releases fix for crypto patch

    Category: Network Security & Hacking News/Latest Security News

    Designed to prevent the processing of spoofed SSL certificates, the patch also caused an important service to malfunction. As a result, Live Communications Server 2005 and Office Communications Server ...
    Friday, 30 October 2009

  41. A closer look at Acunetix Web Vulnerability Scanner 6.5

    Category: Network Security & Hacking News/Latest Security News

    Web applications are accessible 24 hours a day, 7 days a week and control valuable data since they often have direct access to backend data such as customer databases. SSL and locked-down servers are ... ...
    Thursday, 29 October 2009

  42. CubeCart 4 session management bypass leads to administrator access

    Category: Network Security & Hacking News/Global Security News

    ... $_SERVER. However, $_SERVER, which cannot be faked.  And then, on the second line there is: if(isset($_SERVER) && !detectSSL()) return ...
    Thursday, 29 October 2009

  43. Sun Alert 269208 A Security Vulnerability With Verifying HMAC-based XML Digital Signatures in the XML Digital Signature Implementation Included With the Sun GlassFish Enterprise Server v2.1 may Allow Authentication to be Bypassed

    Category: Network Security & Hacking News/Global Security News

    ...  Sun acknowledges, with thanks, Thomas Roessler from the W3C for bringing this issue to our attention. State: Resolved First released: 29-Oct-2009 Sun Alert Link: http://sunsolve.sun.com/search/document.do?assetkey=1-66-269208-1 ...
    Wednesday, 28 October 2009

  44. Caution advised when using the ldd system tool

    Category: Network Security & Hacking News/Latest Security News

    System tool ldd is carelessly coded - a fact which can be exploited by a resourceful attacker to execute code during an analysis System tool ldd is carelessly coded - a fact which can be exploited by ...
    Tuesday, 27 October 2009

  45. Vuln: KDE KSSL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability

    Category: Network Security & Hacking News/Security Exploits and Security Patches

    KDE KSSL NULL Character CA SSL Certificate Validation Security Bypass Vulnerability Read Full Article  ...
    Sunday, 25 October 2009

  46. Vuln: ProFTPD mod_tls Module NULL Character CA SSL Certificate Validation Security Bypass Vulnerability

    Category: Network Security & Hacking News/Security Exploits and Security Patches

    ProFTPD mod_tls Module NULL Character CA SSL Certificate Validation Security Bypass Vulnerability Read Full Article  ...
    Thursday, 22 October 2009

  47. ZBOT and a CapitalOne Phish

    Category: Network Security & Hacking News/Latest Security News

    ...  The current spam campaigns (digital certificate lure) and its corresponding websites (fast flux, wildcarded subdomains) share the same characteristics like last year’s SSL Certificate spam campaign. ...
    Thursday, 22 October 2009

  48. Tech Republic: Configure Apache to support multiple SSL sites on a single IP address

    Category: Network Security & Hacking News/Latest Security News

    Tech Republic: Configure Apache to support multiple SSL sites on a single IP address Tech Republic: Configure Apache to support multiple SSL sites on a single IP address Read Full Article  ...
    Wednesday, 21 October 2009

  49. Vuln: Wget NULL Character CA SSL Certificate Validation Security Bypass Vulnerability

    Category: Network Security & Hacking News/Security Exploits and Security Patches

    Wget NULL Character CA SSL Certificate Validation Security Bypass Vulnerability Read Full Article  ...
    Monday, 19 October 2009

  50. Government outlines increased penalties for data misuse

    Category: Network Security & Hacking News/Latest Security News

    The Government has outlined its plans to jail people convicted of trading illegally in personal data or knowingly or recklessly disclosing it. Under the plans the jail terms would be introduced next April. ...
    Monday, 19 October 2009
Search Parameters
Search Only:

Site Search