Network World

SSL hack vulnerability details to emerge

The vulnerability means that attackers can lurk in the middle of what victims think are secure SSL sessions with banks, retailers and other secure Web sites, picking off passwords and other ...
The Hacker News

Fortinet Warns of Active Exploitation of FortiOS SSL VPN 2FA Bypass Vulnerability

Fortinet reports active attacks exploiting CVE-2020-12812, a FortiOS SSL VPN flaw that can bypass two-factor authentication in specific LDAP setups.
Computerworld

Opinion: Can the SSL vulnerability hurt you?

The security blogosphere is agog over some recently published vulnerability information describing attacks against the venerable SSL protocol — you know, the one that almost the entire Internet relies ...
eWeek

Heartbleed SSL Encryption Vulnerability Requires Quick Attention

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. According to our report on the discovery of a significant ...

Fortinet warns of 5-year-old FortiOS 2FA bypass still exploited in attacks

Fortinet has warned customers that threat actors are still actively exploiting a critical FortiOS vulnerability that allows ...
Infosecurity-magazine.com

SSL Vulnerabilities Found in 68% of Most Popular Android Apps

Man-in-the-middle (MITM) attacks are “wreaking havoc” on Android users because over two-thirds of the most popular apps on Google Play contain SSL vulnerabilities, according to new research from ...
Threat Post

Apple Fixes Serious SSL Issue in OSX and iOS

Apple has fixed a serious security flaw that’s present in many versions of both iOS and OSX and could allow an attacker to intercept data on SSL connections. Apple has fixed a serious security flaw ...
Bleeping Computer

Fortinet fixes critical vulnerabilities in SSL VPN and web firewall

Fortinet has fixed multiple severe vulnerabilities impacting its products. The vulnerabilities range from Remote Code Execution (RCE) to SQL Injection, to Denial of Service (DoS) and impact the ...
eWeek

Compromise Likely of Serious Windows SSL Vulnerability

Dr. Chris Hillman, Global AI Lead at Teradata, joins eSpeaks to explore why open data ecosystems are becoming essential for enterprise AI success. In this episode, he breaks down how openness — in ...
Threat Post

Apple SSL Vulnerability Affects OSX Too

The certificate-validation vulnerability that Apple patched in iOS yesterday also affected Mac OS X up to 10.9.1, the current version. The certificate-validation vulnerability that Apple patched in ...
VentureBeat

3 SSL VPN vulnerabilities disclosed in 2019 are still routinely exploited

VentureBeat presents: AI Unleashed - An exclusive executive event for enterprise data leaders. Network and learn with industry peers. Learn More Vulnerabilities in SSL VPN products are some of the ...
Dark Reading

Case Closed On SSL/TLS Authentication Vulnerability

OVERLAND PARK, KS--(Marketwire - August 19, 2010) - PhoneFactor, Inc., the leading global provider of phone-based multi-factor authentication services, declares victory on the SSL/TLS authentication ...