Browser makers spell out anti-POODLE plans

The top three browser makers announced yesterday how they will deal with the design flaw in SSL 3.0 after researchers revealed that their “POODLE” attack method can steal encrypted information and pilfer browser session cookies.

Microsoft, Google and Mozilla all told users of their browsers — Internet Explorer, Chrome and Firefox, respectively — how they will handle the SSL 3.0 flaw, which cyber criminals could exploit using “man-in-the-middle” attacks to make off with session cookies. Those stolen cookies would let the hackers impersonate their victims, automatically logging into sites to, for example, make online purchases, read email or lift files from cloud storage services.

To read this article in full or to leave a comment, please click here

Read more: Browser makers spell out anti-POODLE plans

Story added 16. October 2014, content source with full text you can find at link above.