This week we will start off with something that everyone using a web browser should be aware of, but it appears that is not the case. The vast majority of us have no idea what the padlock icon on our internet browser is – and it’s putting us at risk …
When is secure not secure
A while back Diana wrote a piece about the padlock in the URL bar of your browser and what it says about that sites security and means for your cyber security: Is that website secure? However what that symbol means in effect is that the communications between your device and …
Microsoft updates – not on Patch Tuesday
The issues with Microsoft’s Windows SSL/TLS handshake failures is too important to wait for next month’s Patch Tuesday: Microsoft fixes Windows TLS handshake failures in out-of-band updates (bleepingcomputer.com)
Weak cryptographic keys in the wild – UPDATED
This post was originally published on 15 March 2022 Researcher, Hanno Böck, has found very weak cryptographic keys in use that have been generated by SafeZone Crypto Libraries, once owned by Inside Secure and now owned by Rambus. These keys are so weak that consumer grade hardware running old algorithms. …
Continue reading “Weak cryptographic keys in the wild – UPDATED”
TLS certificates are what internet trust is built on
Russia has created it’s own TLS certificate organisation and has started issuing these security and trust certificates to Russian sites, who can no longer access issuing authorities outside of the country, because of sanctions. Moscow to issue TLS certificates to Russian websites • The Register