Network World

Rogue SSL certificate exploit puts VeriSign on the spot

Following the success of researchers last week in creating a false SSL certificate based on VeriSign’s RapidSSL brand, the company is scrambling to explain how it happened, how it’s preventing it from ...

Critical flaw in wolfSSL library enables forged certificate use

A critical vulnerability in the wolfSSL SSL/TLS library can weaken security via improper verification of the hash algorithm ...
Bleeping Computer

CloudPanel installations use the same SSL certificate private key

Self-hosted web administration solution CloudPanel was found to have several security issues, including using the same SSL certificate private key across all installations and unintentional ...
CRN

Researchers' Web Certificate Hack Highlights Big Internet Flaw

During the 25th annual Chaos Communication Congress held in Berlin, cryptographers from the U.S., Netherlands and Switzerland demonstrated a way to impersonate the digital credentials of RapidSSL, a ...
Computerworld

PHP.net maintainers to reset user passwords, change SSL certificate

The PHP Group will reset the passwords for accounts on php.net, the official website of the PHP programming language, and will change the site’s SSL certificate after attackers compromised two servers ...
Finextra

Hackers Exploit Third-Party SonicWall SSL VPNs to Deploy Sinobi Ransomware

Cyber attackers are using managed service providers to get into corporate networks through SonicWall SSL VPN devices.eSentire researchers have reported that hackers recently used stolen login info ...