Wednesday, March 2, 2016

DROWN Attack — More than 11 Million OpenSSL HTTPS Websites at Risk [feedly]



----
DROWN Attack — More than 11 Million OpenSSL HTTPS Websites at Risk
// The Hacker News

A new deadly security vulnerability has been discovered in OpenSSL that affects more than 11 Million modern websites and e-mail services protected by an ancient, long deprecated transport layer security protocol, Secure Sockets Layer (SSLv2). Dubbed DROWN, the highly critical security hole in OpenSSL was disclosed today as a low-cost attack that could decrypt your sensitive, secure HTTPS

----

Shared via my feedly reader


Sent from my iPhone