Just under three weeks ago, we wrote about a TLS certificate blunder by a Root Certificate Authority called CNNIC. We thought we’d revisit that story today to see how the Big Four browser makers responded to the lapse…
Tag Archives: TLS
The mobile “security gap” – Pinterest and Yammer the latest gappy apps
Pinterest and Yammer are the latest official mobile apps that didn’t do HTTPS correctly, leaving users at risk of imposters and phishing.
SSCC 193 – Pick a YouTube security token, any token! [PODCAST]
Join Sophos experts Chester Wisniewski and Paul Ducklin as they dissect the latest computer security stories in their inimitable style. Turn news into advice with the Sophos Security Chet Chat!
Serious Security: China Internet Network Information Center in TLS certificate blunder
TLS certificates are very important. In fact, you could say they are the cornerstone of online security, especially for e-commerce. So we thought we’d use a story about a recent certificate security blunder to remind you why…
SSCC 189 – Hey, is that your CPU on fire? [PODCAST]
Join Sophos experts Chester Wisniewski and Paul Ducklin for our weekly security podcast. Sharp, witty and educational, as usual (if we do say so ourselves)…enjoy!
But surely “export grade” means HIGHER quality? 60 Sec Security [VIDEO]
The latest episode of our weekly security news video… …all in just 60 seconds, as usual.
The FREAK bug in TLS/SSL – what you need to know
The FREAK bug affects TLS/SSL, the security protocol that puts the S into HTTPS and the padlock in your browser’s address bar. Paul Ducklin explains in plain English…
Anatomy of a certificate problem – Comodo’s “PrivDog” software in the spotlight
The bug’s now fixed, but when a Certificate Authority offers you software to make your secure web transactions even more secure… …you don’t expect it to work the other way around!
SSCC 187 – The cryptography edition [PODCAST]
Sophos expert John Shier sits in for regular presenter Chester Wisniewski in this episode. John and Paul Ducklin dissect the latest security issues, which were dominated this week by some thorny matters of cryptography.
“Cheaper car insurance” dongle could lead to a privacy wreck
You’d hope that the developers of a dongle that tracks your driving paid a lot of attention to computer security. Or, in fact, any attention at all…