PC World

Security Pro Says New SSL Attack Can Hit Many Sites

A Seattle computer security consultant says he’s developed a new way to exploit a recently disclosed bug in the SSL protocol, used to secure communications on the Internet. The attack, while difficult ...
Hosted on MSN

These vulnerabilities in Apache HTTP Server enable HTTP Request Smuggling and SSL Authentication Bypass, posing severe threats to organizations worldwide

Apache's HTTP Server is a critical component for hosting web applications worldwide. Recently, two significant vulnerabilities CVE-2024-40725 and CVE-2024-40898 have surfaced, raising alarms across ...
InfoWorld

New SSL attack can steal sensitive info from secure Web sites

Security researcher has developed generic attack code that could give hackers a very powerful phishing tool, but is keeping it private A Seattle computer security consultant says he’s developed a new ...
Engadget

Apple quietly issues iOS update to patch faulty SSL authentication (update 2: OS X patch coming)

Is that an iPhone in your pocket? Then you'd better pull it out, dive into the settings menu and check for updates: there may be an important patch waiting for you. Apple has quietly pushed out iOS ...
Ars Technica

IIS, windows authentication, load balancers and SSL

Our minor departmental ASP.NET app works great in DEV on a web server without SSL. It relies on getting the User's Windows identity from HttpContext.Current.User.Identity.Name<BR><BR>When we move the ...