Guidance for the EFAIL S/MIME Vulnerability

Today, a group of security researchers from Germany and Belgium published a vulnerability affecting two email encryption systems: S/MIME and OpenPGP. Dubbed “EFAIL,” this vulnerability has received notable press coverage and we wanted to provide a summary and guidance for DigiCert customers using S/MIME email certificates and other users of secure email. This research raises […]

Security Advisory on Meltdown and Spectre

Last week, security researchers published two vulnerabilities—known as Meltdown and Spectre—which affect the majority of modern computers. Both of these vulnerabilities target low-level functionality of CPU chips, making it possible to read process- and kernel-level data. The technical explanation of these vulnerabilities can seem complex because it requires knowledge of CPU architecture. In simple terms, […]

Wi-Fi is hacked and so are your IoT devices?

That’s one heck of a headline, I know, but things just got real for Wi-Fi security Monday morning. Mathy Vanhoef of imec-DistriNet and Frank Piessens at KU Leuven published the results of their hard work on the authentication mechanism of the WPA2 protocol (which is used by Wi-Fi as a security layer for data traveling […]

This Month in SSL: April 2016

Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption Google recently released a list of Certificate Authorities that are not trusted by browsers. Data Breaches A cybercriminal attempted to sell sensitive information for 1.5 million Verizon customers on the black market […]

Page 1 of 512345