TLS 1.0 / 1.1 Deprecated in Chrome, Safari, Firefox, and Edge Starting 2020

TLS 1.0 / 1.1 Deprecated in Chrome, Safari, Firefox, and Edge Starting 2020

IETF is expected to formally deprecate TLS 1.0 / 1.1 in 2018

  • Security
  • By Catalin Cimpanu
  • October 21st, 2016
Firefox 52 to Ship with TLS 1.3 Support

Firefox 52 to Ship with TLS 1.3 Support

TLS 1.3 support to be enabled by default

Sharp Increase in Malware Utilizing SSL

Sharp Increase in Malware Utilizing SSL

SSL malware samples, C&C servers, grow manifolds

Google Updates Gmail to Show Warnings for Non-TLS Conversations

Google Updates Gmail to Show Warnings for Non-TLS Conversations

Gmail also shows warnings for unauthenticated conversations

OpenSSL Project Patches Two Security Bugs, One Labeled Critical

OpenSSL Project Patches Two Security Bugs, One Labeled Critical

OpenSSL team fixes SSLv2 downgrade issue

Google Fixes Cryptographic Key Security Issue in Go Programming Language

Google Fixes Cryptographic Key Security Issue in Go Programming Language

Google releases Go 1.5.3 to fix the RSA private key leak

New SLOTH Attack Can Reduce the Security of TLS and SSH Protocols

New SLOTH Attack Can Reduce the Security of TLS and SSH Protocols

SLOTH attack can break down secure traffic in one hour

New HTTPS Bicycle Attack Reveals Details About Passwords, GPS Coordinates

New HTTPS Bicycle Attack Reveals Details About Passwords, GPS Coordinates

Theoretical attack could spell doom for HTTPS traffic

  • Security
  • By Catalin Cimpanu
  • December 21st, 2015
Deadline for Better Encryption on Payment Systems Pushed Back Two Years

Deadline for Better Encryption on Payment Systems Pushed Back Two Years

Banking industry needs more time, has too much on its plate

  • Security
  • By Catalin Cimpanu
  • December 1st, 2015
Patent Troll Sues Big Companies over HTTPS

Patent Troll Sues Big Companies over HTTPS

Big brands are asked to pay royalties for usage of HTTPS

Free-of-Charge SSL/TLS Certificates to Be Available Next Month

Free-of-Charge SSL/TLS Certificates to Be Available Next Month

Let's Encrypt project gets closer to its launch date

Popular Apps in Google Play Fail Certificate Validation, Expose User Credentials

Popular Apps in Google Play Fail Certificate Validation, Expose User Credentials

Sensitive user data can be intercepted via trivial MitM

SSL/TLS Cipher Suite Downgrade Affects All Supported Windows Versions

SSL/TLS Cipher Suite Downgrade Affects All Supported Windows Versions

Microsoft could release an out-of-band patch

Strong SSL/TLS Ciphers Downgraded to Use Weak Crypto Key in FREAK Attack <em>UPDATED</em>

Strong SSL/TLS Ciphers Downgraded to Use Weak Crypto Key in FREAK Attack UPDATED

Flaw affects OpenSSL-based Android and Apple devices

PolarSSL Library Vulnerable to Remote Code Execution

PolarSSL Library Vulnerable to Remote Code Execution

Future release includes patch, workaround already available

POODLE Attack Also Affects Some TLS Implementations

POODLE Attack Also Affects Some TLS Implementations

Admins can check if the flaw impacts their servers

Chrome 39 Disables SSLv3 Fallback, Awards $41,500 / €33,000 in Bounties

Chrome 39 Disables SSLv3 Fallback, Awards $41,500 / €33,000 in Bounties

Double-free glitch in Flash and use-after-free vulnerability in Blink lead receive the highest rewards

 
Want more? Browse: