GFW Report: on August 20, China's Great Firewall blocked all TCP port 443 traffic, used for HTTPS, for ~74 minutes, an unusual move; the cause may be accidental
The cause of the incident could be intentional or accidental — Something weird happened with the Great Firewall of China …
Researchers detail gaining the ability to generate counterfeit HTTPS certificates and more after buying an expired WHOIS server domain for the .mobi TLD for $20
.mobi top-level-domain managers changed the location of its WHOIS server. No one got the memo.
Google plans to change Chrome's URL bar lock icon, introduced to signify HTTPS, to a “variant of the tune icon”, because “nearly all phishing sites use HTTPS”
Honestly, it's about time. … Tweets: Brian Jackson / @brianleejackson : Interesting. The HTTPS lock icon 🔒 is being replaced with a tune icon. Coming to a #Chrome near you. I remember writing about wh...
Cloudflare says it mitigated a 26M-requests-per-second DDoS attack, the largest HTTPS DDoS attack detected to date, targeting a customer using its Free plan
Internet infrastructure firm Cloudflare said today that it mitigated a 26 million request per second distributed denial-of-service …
How US agencies are preparing for “post-quantum cryptography” against attackers who harvest sensitive data now for decryption in the future
The US government is starting a generation-long battle against the threat next-generation computers pose to encryption. Tweets: @techreview , @techreview , @aarongrunwald , @statecreative74 , @royvanr...
Report: since January, a group has been hijacking Tor exit relay nodes to perform SSL stripping attacks, peaking in May when the group ran 23.95% of all nodes
namely multiple bitcoin mixer services. They replaced bitcoin addresses in HTTP traffic to redirect transactions to their wallets instead of the user provided bitcoin address.” https://twitter.com/......
DNS over HTTPS can increase user privacy by obfuscating web traffic, but it's no silver bullet as DNS resolving services will still see unencrypted requests
Lily Hay Newman / Wired :
Netlab researchers discover the first-ever malware strain abusing the DNS over HTTPS (DoH) protocol, named Godlua, designed to attack Linux servers
Catalin Cimpanu / ZDNet :
Study: 5.5% of the top 10K HTTPS websites have exploitable TLS flaws subtle enough that the green SSL certificate padlock still appears in up-to-date browsers
WIDESPREAD ADOPTION OF the web encryption scheme HTTPS has added a lot of green padlocks—and corresponding data protection—to the web.
Cisco: Russian-tied VPNFilter malware targets far more routers and is more powerful than first reported, can attack connected PCs, downgrade HTTPS connections
Malware tied to Russia can attack connected computers and downgrade HTTPS. — Two weeks ago, officials in the private …