DigiCert Blog

All posts under: Vulnerabilities

  1. OpenSSL Patches Four Security Vulnerabilities

    Just before 9 a.m. MST this morning, developers at OpenSSL released four patches—versions 0.9.8zh, 1.0.0t, 1.0.1q, and 1.0.2e—for discovered OpenSSL security vulnerabilities. These patches fix a total of four vulnerabilities, three of which were rated as moderate and one rated low. To see the full list of vulnerabilities, see OpenSSL Security Advisory [3 Dec 2015].…


  2. This Month in SSL: October 2015

    Digital Security News

    Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption News Because of recent attacks on SHA-1, Mozilla explained in a recent blog post they are considering deprecating SHA-1 earlier than scheduled by six months. The cost of resources necessary to break SHA-1…


  3. Phishing: A Trending Threat for 2015

    Security Phishing Protection

    Threat trends are in constant shift as cybercriminals focus their efforts on different strategies that are more effective at helping them breach a network. Phishing emails is one strategy that has risen in popularity since 2011, according to Verizon’s Data Breach Investigation Report (DBIR) 2015. Four years ago spyware and keylogging malware dominated the threat…


  4. This Month in SSL: August 2015

    Digital Security News

    Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.) SSL & Encryption News Entrust created a helpful infographic that shows what changes are planned for the industry and when those changes will occur. Data Breaches Earlier this year the IRS announced that their systems…


  5. What Wassenaar Could Mean for Security Research

    Talk of the Wassenarr Arrangement has appeared in many news forums over the past week. In a recent statement by The Bureau of Industry and Security (BIS), the U.S. is finally set to implement export controls from the Wassenaar Arrangement’s Plenary meeting in December 2013. This announcement from the BIS concerns some security experts that the…