Blog Archives

False CONNECT vulnerability allows MitM-attack and intercept HTTPS-traffic

The problem is caused due to errors in the implementation of proxy authentication procedures used in the software of different manufacturers. Researcher Jerry Decime revealed details of the vulnerability allow an attacker to carry out attacks “man in the middle”

Posted in Vulnerabilities Tagged with: , ,

6 vulnerabilities in OpenSSL have been fixed

OpenSSL cryptographic library has released an update which will fix the six discovered issues. Only two of them are labeled as “critical”. OpenSSL is an important part of the Internet infrastructure, because it is one of the most widely used

Posted in Vulnerabilities Tagged with: , , , ,

DROWN-attack able to cut down a third of the network websites

Recently a new vulnerability hole was discovered and it was namedĀ Heartbleed, and now we are facingĀ a new exploit. DROWN, new vulnerability in the OpenSSL, affects servers that use SSLv2. This vulnerability was discovered quite recently. Attackers are able to decipher

Posted in Vulnerabilities Tagged with: , , ,

All about SSL

This site is dedicated to SSL-certificates. You will learn what is an SSL certificate, how to issue and reissue it. FAQ SSL will be useful for both novices and pros. SSL Knowledgebase contains sections on validation, trust logo, vulnerabilities, SSL-certificates differences by type (Wildcard, EV, DV, etc.), as well as many other things.