Queensland researchers seek 'real world' fix for TLS  

Queensland researchers seek 'real world' fix for TLS

In Networks - By Darren Pauli, 13 February 2013 5:10 AM
Score $300k Govt research grant.
Web security protocols open to MITM attacks 

Web security protocols open to MITM attacks

In Networks - By Juha Saarinen, 6 February 2013 4:18 PM
Patches issued.
Researchers detail laundry list of dodgy crypto deployments 

Researchers detail laundry list of dodgy crypto deployments

In Crypto - By Darren Pauli, 26 October 2012 4:46 PM
Developer hits back at 'rude' research.
Etsy hardens up with SSL, HSTS and 2fa 

Etsy hardens up with SSL, HSTS and 2fa

In Web/client - By Darren Pauli, 12 October 2012 5:42 PM
Security upgrades surge ahead.
Cyberoam intercept flaw puts enterprises at risk 

Cyberoam intercept flaw puts enterprises at risk

In Networks - By Darren Pauli, 5 July 2012 3:23 PM
Deep packet inspection boxes spy on staff.
Comodo flags its certificate service as suspicious 

Comodo flags its certificate service as suspicious

In Networks - By Darren Pauli, 4 July 2012 8:01 AM
Bug fixed, reputation red flags clear.
LEGO Aust sent credit cards in readable blocks 

LEGO Aust sent credit cards in readable blocks

In Crypto - By SC Australia Staff, 28 May 2012 10:08 AM
Apology by post.
Google SSL by default appears in Firefox beta 

Google SSL by default appears in Firefox beta

In Web/client - By Darren Pauli, 22 March 2012 10:55 AM
But secure surfing too slow for Chrome.
Six OpenSSL holes plugged 

Six OpenSSL holes plugged

In Applications - By Darren Pauli, 9 January 2012 3:58 PM
Padding Oracle Attack squashed.
Addressing PCI SSL weak cipher requirements 

Addressing PCI SSL weak cipher requirements

In Crypto - By Craig Searle, 29 November 2011 11:29 AM
Craig Searle offers a cheat sheet to improve SSL implementations.
SSL creator slays BEAST 

SSL creator slays BEAST

In Web/client - By Dan Raywood, 18 October 2011 9:02 AM
Hackers have "better things to do".
Kindle Fire browser bounces through EC2 

Kindle Fire browser bounces through EC2

In Cloud - By Darren Pauli, 30 September 2011 7:41 AM
URLs, IP and MAC addresses logged.
Microsoft, Google move to tame Beast 

Microsoft, Google move to tame Beast

In Crypto - By Darren Pauli, 27 September 2011 4:52 PM
Microsoft calls for adoption of TLS 1.1, RC4.
Slapdash SSL certification a risk 

Slapdash SSL certification a risk

In Crypto - By Stewart Mitchell, 8 April 2011 12:04 PM
Certification of non-unique names highlight web weakness, says privacy group.
Two more Comodo resellers pwned in SSL hack  

Two more Comodo resellers pwned in SSL hack

In Crypto - By Angela Moscaritolo, 31 March 2011 1:36 PM
Industry looks to revocation of registries to ease the pain.
Comodo root canal call as more hacks confirmed 

Comodo root canal call as more hacks confirmed

In Crypto - By Liam Tung, 31 March 2011 12:57 PM
Too many SSL certificate resellers?
Comodo hacker reveals Mozilla private key 

Comodo hacker reveals Mozilla private key

In Crypto - By Liam Tung, 30 March 2011 9:42 AM
Only Comodo or hacker know this detail.
Comodo SSL 'hacker' posts proof of pwnage 

Comodo SSL 'hacker' posts proof of pwnage

In Crypto - 29 March 2011 7:47 AM
Paste bin postings attempt to prove hacking feat.
Comms providers target of Comodo SSL fraud: Hypponen 

Comms providers target of Comodo SSL fraud: Hypponen

In Web/client - By Angela Moscaritolo, 25 March 2011 10:59 AM
Hackers could have targeted anyone but they were after the ability to read emails.
Iran behind certificate fraud, says SSL vendor 

Iran behind certificate fraud, says SSL vendor

In Web/client - By Greg Masters, 24 March 2011 3:42 PM
High-profile websites at risk of impersonation.
Hackers fake SSL certificates for web services 

Hackers fake SSL certificates for web services

In Crypto - By Ry Crozier, 24 March 2011 3:29 PM
Sophisticated attack thought to be state-sponsored.
Google offers encrypted search with 'https' site 

Google offers encrypted search with 'https' site

In Web/client - 25 May 2010 10:09 AM
Google promises private browsing via SSL page.
Cyberoam introduces virtual integration of its SSL VPN solution 

Cyberoam introduces virtual integration of its SSL VPN solution

In Networks - By SC Australia Staff, 22 February 2010 1:55 PM
Cyberoam has announced the integration of its SSL VPN solution on a virtual platform.
Clientless SSL VPN products vulnerable 

Clientless SSL VPN products vulnerable

In Applications - By Angela Moscaritolo, 7 December 2009 10:58 AM
Systems bypass fundamental security mechanisms.
Serious vulnerability in SSL discovered 

Serious vulnerability in SSL discovered

In Applications - By Angela Moscaritolo, 6 November 2009 11:25 AM
Attacker could intercept an SSL-protected session.
PayPal suspends hacker's account after bogus SSL post 

PayPal suspends hacker's account after bogus SSL post

In Risk - By Chuck Miller, 8 October 2009 11:38 AM
Black Hat demonstration was followed by exploits in the wild.
Fortinet launches free PC security application 

Fortinet launches free PC security application

In Web/client - 3 September 2009 6:44 AM
No support or content filtering.
Top 10 of Black Hat and Defcon 

Top 10 of Black Hat and Defcon

In Risk - By Iain Thomson, 6 August 2009 9:50 AM
Security woes from Las Vegas.
SSL flaw fixing shows industry can work together 

SSL flaw fixing shows industry can work together

In Applications - By Iain Thomson, 6 August 2009 9:45 AM
Hackers and corporates co-operate.
Browser SSL warnings shown to be ineffective 

Browser SSL warnings shown to be ineffective

In Web/client - By Angela Moscaritolo, 29 July 2009 11:33 AM
New research shows that Secure Socket Layer (SSL) warnings, used in web browsers to indicate a problem with a web page's certificate or the potential for a man-in-the-middle ...
Web browser flaw enables attacks against EV SSL 

Web browser flaw enables attacks against EV SSL

In Web/client - By Angela Moscaritolo, 22 July 2009 9:39 AM
Two security researchers are set to show how, due to a common browser vulnerability, extended-validation SSL certifications don't offer much more protection than traditional certs.
SSL subverted by hacker 

SSL subverted by hacker

In Risk - By Iain Thomson, 20 February 2009 3:02 PM
The security of the Secure Sockets Layer (SSL) protocols widely used for ecommerce has been questioned again after a delegate at the Black Hat computer security conference ...
VeriSign addresses SSL certificate flaw 

VeriSign addresses SSL certificate flaw

In Networks - By Phil Muncaster, 6 January 2009 9:27 AM
VeriSign has moved to address a flaw in its Secure Sockets Layer (SSL) certification technology, which could have allowed hackers to create false certificates.
SonicWALL acquires Aventail for US$25M  

SonicWALL acquires Aventail for US$25M

In Risk - By Dan Kaplan, 14 June 2007 7:28 AM
Network security firm SonicWALL announced plans late Tuesday to purchase Aventail for about US$25 million.
Microsoft makes SSL VPN splash with Whale 

Microsoft makes SSL VPN splash with Whale

In Networks - By Robert Jaques, 15 December 2006 9:54 AM
Microsoft is making waves in the Secure Sockets Layer virtual private networking (SSL VPN) space, according to Forrester Research.
Industry lines up behind enhanced SSL standard 

Industry lines up behind enhanced SSL standard

In Web/client - By Tom Sanders, 10 November 2006 4:55 PM
Microsoft plans to add support for the upcoming Extended Validation standard for SSL certificates this January through a software update to the Internet Explorer 7 browser.
Microsoft acquires SSL VPN vendor Whale 

Microsoft acquires SSL VPN vendor Whale

By Dan Kaplan, 18 May 2006 8:25 PM
Continuing its push into the information security space, Microsoft today announced an agreement to acquire Whale Communications, a leading provider of Windows-based SSL VPN’s ...
SSL tunnels create ‘invisible’ backdoors into corporate networks  

SSL tunnels create ‘invisible’ backdoors into corporate networks

By William Eazel, 9 March 2006 10:06 AM
Encrypted Secure Socket Layer (SSL) communications between internal corporate employees and external internet applications is "invisible" to companies and so comprises a "risk ...
AEP Networks to acquire SSL VPN firm 

AEP Networks to acquire SSL VPN firm

By Marcia Savage, 23 May 2005 9:33 PM
Aiming to broaden its reach into the public-sector market, AEP Networks has agreed to acquire V-ONE, a maker of SSL VPN products.
Aventail sells off managed SSL VPN business 

Aventail sells off managed SSL VPN business

By Marcia Savage, 8 March 2005 5:09 PM
Aventail has sold its managed SSL VPN services business to Netifice Communications, a supplier of IP VPN solutions.
Carphone Warehouse opts for SSL VPN and token solution 

Carphone Warehouse opts for SSL VPN and token solution

By Dan Ilett, 29 April 2004 1:27 PM
The Carphone Warehouse is implementing a secure remote access system for its 8000 employees in over 10 countries.
Unipalm to distribute Rainbow SSL VPNs 

Unipalm to distribute Rainbow SSL VPNs

By Jon Tullett, 2 February 2004 5:08 PM
Unipalm has added Rainbow Technologies' SSL VPN solution, NetSwift iGate, to its portfolio.
1
Sign up to receive SC Magazine email newsletters
   FOLLOW US...
Most Read