DigiCert Blog

All posts under: General

  1. Preventing the DROWN Attack

    Researchers recently uncovered the DROWN vulnerability in SSL v2. DROWN stands for Decrypting RSA with Obsolete and Weakened encryption. It affects HTTPS and other services that rely on the SSL and TLS protocols. Attackers can use the DROWN vulnerability to break the encryption that is used to protect your sensitive data from prying eyes. If…


  2. Lessons to Learn from Two Different Insider Attacks

    The news and media often highlights vulnerabilities, malware, and negligent employee breaches as the only dangers organizations face, overlooking costlier insider threats. Surprisingly, stolen records for insider threats in the US cost $230 which is more than breaches caused by system glitches ($142) and human error ($134). Insider threats alone cost the US $40 billion…


  3. How Mixed Content Compromises Security

    When users visit a website secured by an SSL Certificate, they expect their data to stay safe. But what happens if only part of the site is secured? Below is a scenario that illustrates one example of what could happen. Scenario You visit your favorite retail site to do some shopping. The site, example.com, is…


  4. Dangers of Visual Hacking

    A recent experiment by Ponemon Institute showed that hacking techniques go beyond the typical digital realm. Visual hacking is one method that is easier than brute-forcing passwords or exploiting vulnerabilities. Visual hacking is straightforward to understand; it relies on visually observing and remembering information found on computer screens, phone screens, on desks, sticky notes, paper, etc. This…


  5. What We Learned from Black Hat 2015

    Black Hat Conference Recap

    Black Hat, founded by computer security expert Jeff Moss, held its 18th annual conference in Las Vegas this week. In the first four days, attendees receive training from experts in the infosec community. The fifth and sixth days were dedicated to briefings. Over a hundred experts presented 100 briefings during the conference with topics covering everything…