Chrome 77 fixes 52 security flaws, removes 'ineffective' green bar EV SSL indicators
After Chrome 77, don't expect to see many more green indicators spelling out a company's name in a distinct space in the URL bar.
After Chrome 77, don't expect to see many more green indicators spelling out a company's name in a distinct space in the URL bar.
Changes follow a "significant" increase in error reports after Firefox 65 in December.
Browser makers take aim at the 20 year old protocol for creating secure connections between browsers and web servers.
Google reminds site owners that it will soon start removing trust for Symantec SSL certificates in Chrome.
Beginning January Google will start using full page warnings in Chrome when the browser encounters sites using TLS/SSL or digital certificates signed with the aging SHA-1 hashing algorithm.
With SSL, mobiles and cloud applications complicating traditional defences, shunting all traffic to the cloud has helped one CISO sleep at night
David Braue | 15 Sep | Read more
Privacy watchdogs from Australia and Canada have accused cheater dating site Ashley Madison of misleading users over the security of the site.
Next-gen firewall companies like FireEye may be feeling the pinch from fewer state-backed Chinese hacker attacks, but worldwide spending on security is still growing, according to analyst firm Gartner.
Metadata has been in the news over the last couple of years.
Anthony Caruana | 02 Aug | Read more
Siemens is working on a patch to address multiple industrial switches affected by the recently published DROWN vulnerability.
Here's a quick and dirty guide to SSL/TLS, one of the most important technologies for securing data on the Internet.
Jeremy Kirk | 19 Mar | Read more
For many consumers, Dropbox is perhaps their most obvious connection with the cloud after email. We spoke with Patrick Heim, Dropbox’s head of trust and security at last week’s AISA National Conference.
Anthony Caruana | 19 Oct | Read more
The average global 5,000 company spends about $15 million to recover from the loss of business due to a certificate outage -- and faces another $25 million in potential compliance impact
Maria Korolov | 30 Sep | Read more
Public certificate authorities (CAs) are warning that as of Nov. 1 they will reject requests for internal SSL server certificates that don't conform to new internal domain naming and IP address conventions designed to safeguard networks.
Ellen Messmer | 25 Jul | Read more
Heartbleed wasn't just an interesting Internet security story. It was a sign that one of the most fundamental building blocks relied on by many large companies was significantly flawed. Even more staggering was the revelation that the OpenSSL open source code library, that is responsible for SSL communications between systems, had another flaw that went undetected for over a decade.
Anthony Caruana | 24 Jun | Read more