3 Million Certificates to be Revoked by Let’s Encrypt Due to CAA Bug
Let’s Encrypt to revoke more than 3 million certificates due to a bug in the CAA checking code which fails in checking for the Certificate Authority Authorization (CAA) for the domain.
CAA checks came mandatory...
Critical TLStorm 2.0 Bugs Let Attackers to Gain Remote Access to Enterprise Networks
In multiple models of both Aruba and Avaya switches, Armis has detected five vulnerabilities relating to the implementation of TLS communications.
Using these vulnerabilities, there is a possibility that remote access could be gained to...
Best Practices for Protecting SSL/TLS Certificates and Keys
SSL/TLS certificates are critical to ensure data security, authenticity, and integrity in transit. They help prevent a whole range of attacks such as eavesdropping, impersonation, man-in-the-middle, phishing attacks, and so on. But what about...
Staying On Top of TLS Attacks With SSL Certificate
The Transport Layer Security (TLS)/ Secure Socket Layer (SSL) protocol is critical to ensuring data confidentiality, privacy, security, and integrity in transit on the internet. However, they are not 100% immune from being attacked...
SSL Stats: Why is an SSL Certificate So Important for Your Website?
SSL certificates are no longer considered a necessity only for large companies. Every website, big or small across industries, needs SSL protection today. SSL stats will tell you how SSL adoption has become almost...
Maltego’s New SSL Certificate Spotter to Detect Suspicious Certificate
As the world becomes more reliant on technology, the importance of cybersecurity cannot be overstated. Being proactive in identifying and mitigating potential threats is crucial to protecting sensitive information and preventing devastating cyber attacks....
.webp?w=324&resize=324,235&ssl=1 "OpenVPN Easy-RSA Vulnerability Enables Bruteforce of Private CA Key")
OpenVPN Easy-RSA Vulnerability Enables Bruteforce of Private CA Key
A critical vulnerability (CVE-2024-13454) has been identified in Easy-RSA versions 3.0.5 through 3.1.7 when used with OpenSSL 3.
This flaw allows private Certificate Authority (CA) keys to be encrypted using the outdated and weak cipher...
SSL Certificate Management 101
Certificate management is crucial for ensuring the security, integrity, and authenticity of your organization's digital communications and transactions. As your teams use more apps and connected tools, the need for effective SSL certificate management...
DigiCert to Revoke Thousands of Certificates Following DNS Validation Error
DigiCert, a major certificate authority, to revoke thousands of SSL/TLS certificates because of a Domain Control Verification error. This could affect a lot of websites.
The company discovered that an oversight in the DNS-based verification...
.webp?w=324&resize=324,235&ssl=1 "Understanding The Different Types Of SSL Certificates")
Understanding The Different Types Of SSL Certificates
As of January 2024, over 302 million SSL certificates had been issued online. Secure Sockets Layer (SSL) is a security protocol which authenticates and encrypts information passed between web servers and browsers.
An SSL...
Recent Posts
State-Sponsored Hacktivism Attacks on The Rise, Rewrites Cyber Threat Landscape
The global cybersecurity landscape is witnessing an alarming paradigm shift as state-sponsored hacktivism attacks have surged dramatically in recent months, blurring the traditional boundaries...