Security News

Eight vulnerabilities in the HTTP/2 server implementations were found in vendors Amazon, Apple, Microsoft and Apache.

Researchers at Netflix and Google have discovered a total of eight denial-of-service (DoS) vulnerabilities affecting various HTTP/2 implementations, including from major tech companies such as...

Beware the denials of service: Netflix warns of eight networking bugs On Tuesday, Netflix, working in conjunction with Google and CERT/CC, published a security advisory covering a series of...

Various implementations of HTTP/2, the latest version of the HTTP network protocol, have been found vulnerable to multiple security vulnerabilities affecting the most popular web server software,...

Alternative Services spec bungled by browser makers The HTTP Alternative Services header can be abused to conduct network reconnaissance and attacks, to bypass malware protection services, and to...

Expensive renewals once a year... or free certificates any time? Tough choice CA/Browser Forum – an industry body of web browser makers, software developers, and security certificate issuers – is...

If you are in Kazakhstan and unable to access the Internet service without installing a certificate, you're not alone. The Kazakhstan government has once again issued an advisory to all major...

Two years after promising to report all HTTP-based web pages as insecure, Mozilla is about to deliver.

Google this week announced the general availability of its standard DNS over HTTPS (DoH) service, which includes full RFC 8484 support. read more

Google finalizes its DNS-over-HTTPS service inching toward a world where DNS request are sent via HTTPS and not UDP or TCP.