Thursday, February 19th, 2015
Lenovo is in hot water after it was revealed on Wednesday that the company is shipping consumer laptops with Superfish (Adware) pre-installed. Security experts are alarmed, as the software performs Man-in-the-Middle attacks that compromises all SSL connections.
It's a fact of life; PC manufacturers are paid to install software at the ...
Posted in Hardware, Internet, Privacy, Security | No Comments
Thursday, January 29th, 2015
A new Chrome extension highlights tools embedded in websites that could pose privacy risks by sending data unencrypted over the Internet.
It's hard to find a major website that doesn't use a variety of third-party tracking tools for online advertising, social media and analytics. But if the trackers send data unencrypted, ...
Posted in Internet, Privacy | No Comments
Tuesday, November 18th, 2014
Vital personal and business information flows over the Internet more frequently than ever, and we don’t always know when it’s happening. It’s clear at this point that encrypting is something all of us should be doing. Then why don’t we use TLS (the successor to SSL) everywhere? Every browser in ...
Posted in Internet, Privacy, Security | No Comments
Tuesday, November 11th, 2014
Remember Heartbleed? You know, the exploit in SSL that was so bad it got its own brand? Microsoft may have an issue of similar scale on its hands with a critical patch issued via Windows Update today.
The patch in question is MS14-066, or otherwise known as the cryptically named “Vulnerability in Schannel ...
Posted in Internet, Privacy, Security, Windows | No Comments
Tuesday, October 14th, 2014
Today we are publishing details of a vulnerability in the design of SSL version 3.0. This vulnerability allows the plaintext of secure connections to be calculated by a network attacker. I discovered this issue in collaboration with Thai Duong and Krzysztof Kotowicz (also Googlers).
SSL 3.0 is nearly 15 years old, ...
Posted in Internet, Privacy, Security | 1 Comment
Page 2 of 14«12345...10...»Last »