If you use a Let’s Encrypt SSL/TLS certificate, you may wish to check your account over the coming days. Revocation is…
Tag: SSL
A week in security (Sept 13 – Sept 19)
Last week on Malwarebytes Labs Other cybersecurity news Stay safe!
What are SSL certificates?
Secure Sockets Layer (SSL) certificates are what cause your browser to display a padlock icon, indicating that your connection to a…
Five years later, Heartbleed vulnerability still unpatched
The Heartbleed vulnerability was introduced into the OpenSSL crypto library in 2012. It was discovered and fixed in 2014, yet today—five…
Researchers go hunting for Netflix’s Bandersnatch
A new research paper from the Indian Institute of Technology Madras explains how popular Netflix interactive show Bandersnatch could fall victim to…
HTTPS: why the green padlock is not enough
When goods get sold in large quantities, the price goes down. This might not be the first law of economics, but…
SSL Malvertising Campaign Targets Top Adult Sites
The SSL malvertising campaign we documented in August that affected Yahoo.com, MSN.com and several other top sites is still ongoing. This…
Malvertising Attack Hits Realtor.com Visitors
As the debate about online ads is raging thanks to Apple’s introduction of ad blockers in its App Store, malvertising keeps on…
UPDATE: Apple in hot water after SSL/TLS validation fiasco
Update (Feb 25): More info on the update can be found here. Original story: Releasing a software update right before the…
With the latest NSA allegations, can we still trust encryption?
The New York Times and the Guardian published news stories last week alleging that the National Security Agency (NSA) spent billions of…