Security News

Two years after promising to report all HTTP-based web pages as insecure, Mozilla is about to deliver.

Google this week announced the general availability of its standard DNS over HTTPS (DoH) service, which includes full RFC 8484 support. read more

Google finalizes its DNS-over-HTTPS service inching toward a world where DNS request are sent via HTTPS and not UDP or TCP.

Why you shouldn't trust a website simply because it's secured using HTTPS and backed by the green padlock symbol.

Malicious actors are abusing users’ trust in the HTTPS protocol to launch phishing campaigns, the Federal Bureau of Investigation (FBI) warns in a recent alert.  read more

DNS over HTTPS (DoH), backed by Google, Mozilla and Cloudflare, is about to make web surveillance a lot more difficult.

Rogue 'worker' processes can sneak in with elevated privileges at startup Apache HTTP Server has been given a patch to address a potentially serious elevation of privilege vulnerability.…

Cybercriminals are utilizing hidden “well-known” directories of HTTPS sites to store and serve malicious payloads, Zscaler security researchers have discovered.  read more

Security services provider Cloudflare on Monday announced the release of two new tools related to HTTPS interception detection.  read more

It's patching time again for Windows Server 2016 and Windows 10 Oops! Microsoft has published an advisory on a bug in its Internet Information Services (IIS) product that allows a malicious HTTP/2...