There’s a major web encryption flaw that has been documented and widely covered in the media which permits a “man in the middle” type attack to occur from your web browser How does it work? It allows an attacker to intercept HTTPS traffic between vulnerable clients and servers, and then forces them to use an export-grade cryptography, which can then …
Google is planning to put an end to SSL exploits, hopefully before they happen with Chrome
The other day I posted about the BEAST that can circumvent SSL encryption used with websites and how a proof of concept would be demonstrated soon and actual exploits in the wild even sooner. No sooner had I posted about that than Google’s Chrome development team had posted that they have an update already prepared for the Chrome browser that …
SSL encryption broken – Proof of concept demo later this week #ph33r
My first reaction to the news that read “Hackers break SSL encryption used by millions of sites – Beware of BEAST decrypting secret PayPal cookies” was, “What took ’em so long?” The article above gives all the details you can stand, and a quick search of Google for news articles will tell you everything else you want to know. The …
SECURE IT ALERT: FireSheep is proof of concept why public unencrypted Wi-Fi is dangerous
Homeland Secure IT Alert for Saturday, October 30, 2010 FireSheep add-on for Firefox browser is proof-of-concept why you should NOT use public / unencrypted Wi-Fi to access without extreme caution. Last week, a tool was released that makes it possible for anyone to easily hijack your web sessions from within a browser view. When I say anyone, that …