DigiCert Blog

All posts under: Best Practices

  1. OpenSSL Patches 3 Security Vulnerabilities in OpenSSL 1.1.0

    This morning, the OpenSSL project team released the security patch 1.1.0c for three security vulnerabilities discovered in OpenSSL 1.1.0. This patches fix one “high severity,” one “moderate severity,” and one “low severity” vulnerabilities. None of these bugs affect SSL/TLS certificates. No actions related to SSL/TLS certificate management are required. Source code for all the OpenSSL…


  2. Google CT to Expand to All Certificates Types

    A recent Google announcement says all publicly trusted SSL/TLS certificates issued in October 2017 or later will be expected to comply with Chrome’s Certificate Transparency (CT) policy in order to be trusted by that browser. Since January 2015, Chrome has required Extended Validation (EV) certificates to comply with CT, but now with this policy change, it…


  3. Key Elements of a Disaster Recovery Plan

    In preparing for cybercriminals to attack with new variations of malware, it can be easy to forget that natural disasters can cause crippling data loss or server damage. Research by Eastern Kentucky University revealed that natural disasters cost the global economy $2.5 trillion since 2000, affecting SMBs in particular. After experiencing a disaster, one in…


  4. Improper Employee Access Compromises Healthcare Organizations

    Healthcare organizations are a hub for huge volumes of data, personal information, and hacking potential. It is hardly a question why new research by Solutionary found that healthcare organizations are 114 times more likely to be hit by ransomware infections than financial firms or educational institutions, considering the multitude of valuable records that can be…


  5. A Strong Incident Response Plan Reduces Breach Severity

    A security crisis cannot be attributed to just one cause. Incidents may be the product of a complicated plan acted upon by malicious hackers or a simple employee mistake. Whatever the cause, results are detrimental and the ramifications of breach may effect enterprise operations, reputation, and trust. BakerHostetler states in their 2016 Data Security Incident…