Security News

Turns out that the software a bunch of CAs used to generate public-key certificates was flawed: they created random serial numbers with only 63 bits instead of the required 64. That may not seem...

SSL and TLS certificates and related services can be easily acquired from dark web marketplaces, according to an academic study sponsored by Venafi, a company specializing in the protection of...

There is no dearth of compromised, fake and forged SSL/TLS certificates for sale on dark web markets, researchers have found. TLS certificates are sold individually and packaged with a wide range...

Regenerating certificates may securely resolve authentication traffic, which is not being properly encrypted.

As information security budgets grow and funds are allocated to protect the defensive perimeter, many companies have overlooked the critical importance of digital certificate management. And a new...

It turns out that Google, like Facebook, abused its Apple Enterprise Developer Certificate to distribute a data collection app to iOS users, in direct contravention of Apple’s rules for the...

The US government shutdown is affecting more than just physical sites like national parks and monuments.

Many TLS certificates for .gov domains have not been renewed due to the ongoing shutdown of the United States government, making them insecure or inaccessible. read more

Machine learning is all the rage - but don't knock human savvy just yet! One weird character can be enough to alert a smart researcher...

Audiophiles could get played like a fiddle, have their web traffic snooped by son-of-a-pitch scammers Headphone maker Sennheiser is facing the music after being caught compromising the security of...