Network Protocols and Security
- May 26, 2016
In order to stop metadata snooping by law enforcement and hackers, a proposed spec aims to improve DNS privacy with TLS.
- April 15, 2015
PCI DSS 3.1 grants merchants about 14 months to nix flawed SSL and TLS protocols, but demands they quickly provide detailed new documentation on how they plan to make the transition.
- April 05, 2015
Experts say even enterprises that carefully secure TLS may still be at the mercy of the numerous security issues affecting the SSL ecosystem.
- March 31, 2015
Qualys has added a free, public API to its SSL testing services, which will enable an enterprise to test any website or server for SSL vulnerabilities.
- March 30, 2015
The PCI Security Standards Council has confirmed that PCI DSS 3.1 will be released in just a few weeks. According to a Gartner analyst, the surprise new release could cause major problems for merchants.
- March 23, 2015
Cisco says a vulnerability in some of its IP phones for SMBs could allow eavesdropping. A fix is not yet available, but Cisco has offered mitigation techniques.
- December 22, 2014
According to researchers, the most severe of several newly discovered Network Time Protocol security flaws can be exploited remotely with a single packet.
- September 19, 2014
News roundup: Rogue cell phone towers are popping up across the United States, heightening enterprise communication and data privacy concerns. Plus: Goodwill breach update; Adobe patches released; and security in 2025.
- June 30, 2014
A Gartner analyst says SDN security issues abound because of lacking security controls, little interoperability and shaky management features.
- May 16, 2014
Uneven response efforts have left hundreds of thousands of servers and other devices vulnerable to the Heartbleed OpenSSL vulnerability.
- August 26, 2013
At VMworld 2013, VMware unveiled its next-gen network virtualization platform, NSX, and an ecosystem partnership with the security industry.
- August 09, 2013
Neohapsis' Scott Behrens explains how having both IPv4 and IPv6 Internet protocols enabled can lead to man-in-the-middle attacks.
- February 06, 2013
HD Moore unveiled research showing wide-scale UPnP security issues last week, but some of the problems have been known for years.
- November 26, 2012
Weak passwords may be enabling attackers to hack the DNS records of some Go Daddy hosted websites to spread ransomware.
- February 22, 2012
Understanding IPv6 security issues can be a challenge, but the protocol's co-inventor says enterprises can no longer afford to ignore IPv6 security concerns.