DigiCert Blog

All posts under: Network Security

  1. OpenSSL Patches Six Security Vulnerabilities

    This morning, OpenSSL released six security patches—versions 1.0.2b, 1.0.1n, 1.0.0s, and 0.9.8zg—for new security vulnerabilities discovered in OpenSSL. These patches fix six vulnerabilities: five are rated moderate risk and one is classified as low risk. For a full list, see the OpenSSL advisory. None of these bugs affects SSL Certificates; no action related to certificate management is required.…


  2. PCI Releases DSS 3.1, Puts Expiration on Weak Encryption

    As was recently announced by the Payment Card Industry (PCI) in the Data Security Standard (DSS) version 3.1, SSL and early TLS will no longer be accepted as strong cryptography come June 30, 2016. Effective immediately is the outlaw of installing new technology that uses SSL or early TLS. With the exposed vulnerabilities FREAK and…


  3. OpenSSL Patches 12 Security Vulnerabilities

    Early this morning, OpenSSL released patches for new security vulnerabilities found in OpenSSL versions 1.0.2a, 1.0.1m, 1.0.0r and 0.9.8zf. These patches fix a total of 12 vulnerabilities, two of which were rated as high severity. According to the OpenSSL advisory, one of the high severity vulnerabilities can be exploited to allow a DoS attack against…


  4. Say Goodbye to 2014, and Say Hello to a More Secure 2015

    A few weeks ago, the Online Trust Alliance (OTA) announced that over 90% of data breaches in the first half of 2014 could have been prevented—suggesting that there is a lot of room for improvement in 2015. As the OTA analyzed over 1,000 breaches that occurred during the beginning of 2014, they found that the…


  5. Pentesting Part 4: Considerations for Choosing a Pentester

    Secure People from Social Engineering

    In this pentesting series we have discussed the basic principles and ideas behind pentesting, how those principles can be applied to a home network for better security, and why businesses (particularly small businesses) should conduct pentests. This is the concluding post in our pentesting series. Hopefully, you have learned why you should do pentesting. Get…