Browser makers spell out anti-POODLE plans
The top three browser makers announced yesterday how they will deal with the design flaw in SSL 3.0 after researchers revealed that their “POODLE” attack method can steal encrypted information and pilfer browser session cookies.
Microsoft, Google and Mozilla all told users of their browsers — Internet Explorer, Chrome and Firefox, respectively — how they will handle the SSL 3.0 flaw, which cyber criminals could exploit using “man-in-the-middle” attacks to make off with session cookies. Those stolen cookies would let the hackers impersonate their victims, automatically logging into sites to, for example, make online purchases, read email or lift files from cloud storage services.
To read this article in full or to leave a comment, please click here
Read more: Browser makers spell out anti-POODLE plans