Archive for the ‘HTTPS encryption’ Category

Firefox to Automatically Trust OS-Installed CA Certificates to Prevent TLS Errors

July 2nd, 2019
Mozilla has finally introduced a mechanism to let Firefox browser automatically fix certain TLS errors, often triggered when antivirus software installed on a system tries to intercept secure HTTPS connections. Most Antivirus software offers web security feature that intercepts encrypted HTTPS connections to monitor the content for malicious web pages before it reaches the web browser. To

Posted in browser security, certificate authority, Firefox, Firefox security, free HTTPS certificate, Free SSL TLS Certificate, HTTPS encryption, Mozilla Firefox, TLS encryption | Comments (0)

4 Flaws hit HTTP/2 Protocol that could allow Hackers to Disrupt Servers

August 3rd, 2016

If you think that the HTTP/2 protocol is more secure than the standard HTTP (Hypertext Transfer Protocol), then you might be wrong, as it took researchers just four months to discover four flaws in the HTTP/2 protocol.

HTTP/2 was launched properly just in May last year after Google bundled its SPDY project into HTTP/2 in February in an effort to speed up the loading of web pages as well as

Posted in ddos attack, HTTP/2 Protocol, HTTPS, HTTPS encryption, network security, server security, SPDY Protocol, website security, Whats is HTTP/2 Protocol | Comments (0)

Exploiting Browser Cookies to Bypass HTTPS and Steal Private Information

September 25th, 2015

A newly discovered critical flaw in the implementation of web cookies by major browsers could open secured (HTTPS) browsing to Man-in-the-middle attacks.

The US Computer Emergency Response Team (CERT) has revealed that all the main browser vendors have improperly implemented the RFC 6265 Standard, also referred to as “Browser Cookies,” allowing…

…remote attackers to bypass secure HTTPS

Posted in cookies stealing, hacking news, https cookies, HTTPS encryption, man-in-the-middle attack, Web Cookies | Comments (0)

OpenSSL to Patch Undisclosed High Severity Vulnerability this Thursday

July 7th, 2015

Attention Please! System Administrator and anyone relying on OpenSSL should be prepared to switch to a new version of the open-source crypto library that will be released this Thursday 9th July.

OpenSSL is a widely used open-source software library that provides encrypted Internet connections using SSL/TLS for majority of websites, as well as other secure services.

The new versions of

Posted in hacking news, Heartbleed bug, HTTPS encryption, OpenSSL, OpenSSL vulnerability, POODLE SSL Attack, SSL TLS security, SSL vulnerability, Vulnerability | Comments (0)