Security News

Mozilla Patching Firefox Certificate Pinning Vulnerability (Threatpost)
2016-09-19 20:03

Mozilla is expected tomorrow to patch a critical certificate pinning vulnerability in Firefox’s automated update process for extensions.

Doping-Froome has 'no issue' with certificates leak in WADA hack (Yahoo Security)
2016-09-15 11:04

Froome has 'no issue' with certificates leak in WADA hack (Yahoo Security)
2016-09-15 11:04

Chinese CA hands guy base certificates for Github, Florida uni (The Register)
2016-08-29 08:22

Kaspersky Safe Browser iOS app sports MITM SSL certificate bug (Help Net Security)
2016-08-01 21:48

Security researcher David Coomber has unearthed a vulnerability (CVE-2016-6231) in the Kaspersky Safe Browser iOS app that effectively contradicts its name. As it turns out, the app does not...

How to create a self-signed certificate to use on Apache2 (TechRepublic)
2016-06-13 18:57

Microsoft to retire support for SHA1 certificates in the next 4 months (ArsTechnica)
2016-05-04 17:03

After issuing 1.7M certificates, Let’s Encrypt CA officially leaving beta (Help Net Security)
2016-04-13 15:55

Let’s Encrypt, the non-profit Certificate Authority (CA) backed by the Electronic Frontier Foundation, Mozilla, Cisco, Akamai, and others, is ready to be considered a stable offering. “Since our...

Let's Encrypt free security certificate program leaves beta (ZDNet)
2016-04-12 17:16

PHP, Python still fail to spot revoked TLS certificates (Help Net Security)
2016-04-01 16:04

In 2012, a group of researchers demonstrated that SSL certificate validation is broken in many applications and libraries, and pointed out the root causes for that situation: badly designed APIs...