NBC News

Authentication Giant VeriSign Hacked Repeatedly in 2010

Update: VeriSign has released a public statement about the data breach. See below. VeriSign, the Internet infrastructure company at the heart of the World Wide Web, was hacked repeatedly in 2010 by ...
PC World

Security Pro Says New SSL Attack Can Hit Many Sites

A Seattle computer security consultant says he’s developed a new way to exploit a recently disclosed bug in the SSL protocol, used to secure communications on the Internet. The attack, while difficult ...
Hosted on MSN

These vulnerabilities in Apache HTTP Server enable HTTP Request Smuggling and SSL Authentication Bypass, posing severe threats to organizations worldwide

Apache's HTTP Server is a critical component for hosting web applications worldwide. Recently, two significant vulnerabilities CVE-2024-40725 and CVE-2024-40898 have surfaced, raising alarms across ...
InfoWorld

New SSL attack can steal sensitive info from secure Web sites

Security researcher has developed generic attack code that could give hackers a very powerful phishing tool, but is keeping it private A Seattle computer security consultant says he’s developed a new ...
Ars Technica

IIS, windows authentication, load balancers and SSL

Our minor departmental ASP.NET app works great in DEV on a web server without SSL. It relies on getting the User's Windows identity from HttpContext.Current.User.Identity.Name<BR><BR>When we move the ...
Dark Reading

Four SSL Certificate Management Tips For Holiday E-Commerce Success

With Cyber Monday kicking off the first week of hot-and-heavy e-commerce action this holiday season, keeping consumers spending safely is a top-of-mind concern for most retailers. One of the keys to ...