Slack fixes account-stealing bug

Credit to Author: Danny Bradbury| Date: Tue, 17 Mar 2020 12:33:43 +0000

Slack has fixed a bug that allowed attackers to hijack user accounts by tampering with their HTTP sessions.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/i-F9hS91EoQ” height=”1″ width=”1″ alt=””/>

Read more

Let’s Encrypt issues one billionth free certificate

Credit to Author: Danny Bradbury| Date: Mon, 02 Mar 2020 13:06:25 +0000

Thanks to this flood of free certificates, the web is a lot more encrypted than it was a few years ago.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/m_p5aVh50cI” height=”1″ width=”1″ alt=””/>

Read more

Google Chrome to start blocking downloads served via HTTP

Credit to Author: John E Dunn| Date: Mon, 10 Feb 2020 11:59:34 +0000

Google has announced a timetable for phasing out insecure file downloads in the Chrome browser starting with desktop version 81 due next month.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/pLJD5xgjayo” height=”1″ width=”1″ alt=””/>

Read more

Google’s Chrome 80 clamps down on cookies and notification spam

Credit to Author: Danny Bradbury| Date: Thu, 06 Feb 2020 12:14:48 +0000

Version 80 of the Chrome browser is out with some new features designed to save your security and your sanity.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/yYDlj-wH94I” height=”1″ width=”1″ alt=””/>

Read more

Vulnerability in content distribution networks found by researchers

Credit to Author: Danny Bradbury| Date: Thu, 24 Oct 2019 14:41:44 +0000

Researchers have found a flaw that could lead to denial of service attacks on content distribution networks around the world.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/R2nlTpWWhFQ” height=”1″ width=”1″ alt=””/>

Read more

Multiple HTTP/2 DoS flaws found by Netflix

Credit to Author: Danny Bradbury| Date: Mon, 19 Aug 2019 11:58:14 +0000

Netflix has identified several denial of service (DoS) flaws in HTTP/2, a popular network protocol that underpins large parts of the web. Exploiting them could bring servers grinding to a halt.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/lnFwWgp85fY” height=”1″ width=”1″ alt=””/>

Read more