Security Alerts & News
by Tymoteusz A. Góral

History
#1508 OpenSSL patches high-severity OCSP bug, mitigates SWEET32 attack
A vulnerability in the OpenSSL implementation of the Online Certificate Status Protocol (OCSP) was patched this week, closing a denial-of-service weakness in affected servers.

The patch was the most severe of 14 released yesterday by OpenSSL.

OCSP is an alternative in many cases to Certificate Revocation Lists where a client can use the protocol to ping a server requesting the status of a digital certificate.
Read more
#1509 Nearly all top global companies have leaked credentials online
#1508 OpenSSL patches high-severity OCSP bug, mitigates SWEET32 attack
#1507 We're told data breaches cost millions on average - but this security study disagrees
#1506 Cisco Talos: Spam at levels not seen since 2010
#1505 Vulnerable ISAKMP Scanning Project
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12