Cookies MONSTER your security, even with encryption

https://regmedia.co.uk/2015/02/06/cookie_monster.jpg?x=648&y=429&crop=1

A whole lot of work rolling out HTTP security is being undermined by bad browser implementation that facilitates man-in-the-middle attacks.

CERT has warned that all of the major browser vendors have a basic implementation error that mean “cookies set via HTTP requests may allow a remote attacker to bypass HTTPS and reveal private session information”.

Tags:

Security

Encryption

Story added 25. September 2015, content source with full text you can find at link above.

Comments are closed.

More antivirus and malware news?

This wristband gives you an electric shock when you overspend
44% off Aukey Dash Cam, Full HD Wide Angle With Night Vision – Deal Alert
Dragos Says Ransomware Gang Accessed Limited Data but Failed at Extortion Scheme
Multiple Trend Micro Products Multiple Security Vulnerabilities
Google.ro and other RO domains, victims of a possible DNS hijacking attack
White House Blacklists Russian Ransomware Payment ‘Enabler’
New ‘Kaiji’ Botnet Attacks Linux, IoT Devices via SSH Brute Force
Pirate Bay founder suspected in police hacking
10 shocking ways the Feds are spying on you
SEC Says It Was Hacked in 2016

Cookies MONSTER your security, even with encryption

More antivirus and malware news?

Ads

Security news

Malware

Security

IT security

About site

Search Terms Tips

Recent New Tips

Recent Posts