SEARCH
Proposal to Make HTTPS Certificate Expire Yearly Back on the Table
The question about shortening the validity period for TLS certificates is back in front of the CA/Browser Forum again. CAs still oppose it and browser makers are still for it.
Many HTTP/2 Servers Vulnerable to DoS Bugs
A number of HTTP/2 server implementations are vulnerable to eight newly disclosed denial-of-service flaws.
Personality Types May Be Useful in Security Training
Research suggests that people’s personality types can influence whether they would be more likely to fall for social engineering attacks or be less likely to click on phishing links.
Two New BlueKeep-Like Flaws Emerge in Windows
Microsoft has fixed two new remotely exploitable vulnerabilities in Windows that are similar to the BlueKeep bug and could be exploited by a worm.
Phishers Play on Emotions to Fool Victims
New research from Google and the University of Florida shows that attackers use a variety of emotional triggers to trick victims into falling for their schemes.