Here is our latest news roundup of articles about network and SSL security. to see the whole series.
SSL & Encryption News
- Google Chrome 40 was released on January 23, which means we’re only one version away from the which is scheduled for version 41.
- announced that they will soon not trust 1024-bit SSL root certificates.
- and will be included in Google Chrome in February. ÃÛÌÒTV is the first and currently to operate a Certificate Transparency log.
Data Security
- Ladar Levision, founder of the now defunct Lavabit email service, is working on a new email project that .
- Gogo in-flight Internet sets up .
- 2014 was fraught with data breaches, but the upside could mean .
- President Obama’s brings cybersecurity into the national spotlight (the full transcript can be found ).
- Missed the kick-off for Data Privacy Day? .
- discusses the Internet of Things, its benefits and risks, and efforts to secure it.
Vulnerabilities
- Four updates released by fix multiple moderate to low risk vulnerabilities found in OpenSSL.
- that they will be disabling SSL 3.0 in Azure storage on February 20, 2015.
- found in Java are addressed with Oracle's new updates, the updates also disable SSL 3.0 by default.
- Qualys discovered a major vulnerability in Linux systems known as the . GHOST allows an attacker access to a system without needing system credentials.
- for two zero-day vulnerabilities found in the Adobe Flash Player.
Malware
- A , disguised as a fax tricks thousands in South America and Eastern Europe.
Data Breaches
- , resulting in 20 million usernames and email addresses being stolen.