Announces SHA-2 SSL Support

Microsoft, Google and Mozilla have all announced various plans to stop supporting SHA-1 SSL certificates after January 1, 2017. As a result, began issuing SSL certificates using only SHA-2 (aka SHA-256) as the default hashing algorithm starting September 24, 2014. There are no special flags » Continue Reading.

New Banker Trojan Bypasses SSL Mechanism

According to the Register, “Another RAT crawls out of the malware drain.” The short article is about a new banking trojan that can steal sensitive data from people using Internet Explorer, Chrome or Firefox browsers. PhishMe and CSIS (Center for Strategic and International Studies) have » Continue Reading.

Heartbleed Bug Hotfix

As you may or may not know, a recent vulnerability known as ‘Heartbleed’ was discovered in an OpenSSL which could theoretically allow an attacker to steal the private keys of SSL certificates.