News 01-31-2015

This Month in SSL: January 2015

Mark Santamaria

Here is our latest news roundup of articles about network and SSL security. Click here to see the whole series.

SSL & Encryption News

Data Security

Vulnerabilities

  • Four updates released by OpenSSL fix multiple moderate to low risk vulnerabilities found in OpenSSL.
  • Microsoft announced that they will be disabling SSL 3.0 in Azure storage on February 20, 2015.
  • Nineteen major vulnerabilities found in Java are addressed with Oracle's new updates, the updates also disable SSL 3.0 by default.
  • Qualys discovered a major vulnerability in Linux systems known as the GHOST attack. GHOST allows an attacker access to a system without needing system credentials.
  • Adobe released patches for two zero-day vulnerabilities found in the Adobe Flash Player.

Malware

Data Breaches

UP NEXT
PKI

3 Surprising Uses of PKI in Big Companies and How to Ensure They Are all Secure

5 Min

Featured Stories

02-20-2024

Survey says: 1/3 of leaders are more vulnerable than they think

Lessons from the Equifax data breach

How poor certificate visibility led to a
76-day-long leak of sensitive information
02-02-2024

Reflections and projections on DNS’s role in digital trust