Yahoo

Heartbleed OpenSSL: Are your servers still bleeding?

Recent research revealed there are more than 300,000 servers still at risk from the Heartbleed OpenSSL. I suspect IT server admins are struggling to manage the process of updating OpenSSL — after all, ...
Threat Post

Scans Quantify Vulnerable OpenSSL Servers

Qualys director of engineering Ivan Ristic published data that indicates about half of servers running OpenSSL are vulnerable to CVE-2014-0224. Certain mitigating factors made the recent OpenSSL ...
ZDNet

OpenSSL fixes another severe vulnerability

The OpenSSL project has reported fixes for several vulnerabilities, at least one of them serious. The most significant vulnerability is SSL/TLS MITM vulnerability (CVE-2014-0224). Unlike Heartbleed, ...
Dark Reading

New OpenSSL Flaw Exposes SSL To Man-In-The-Middle Attack

Don't look now, but it's time to patch OpenSSL again: A critical flaw discovered in the open-source encryption software could allow an attacker to hijack an SSL/TLS session and decrypt and alter the ...
techtimes

OpenSSL hack reveals urgent need to beef up security

The homepage of the OpenSSL Project was attacked by hackers around 8 pm EST on December 29 but the website depended upon by those who want to maintain secure communications for mobile apps, web ...
Threat Post

OpenSSL Fixes Serious TLS Vulnerability

The OpenSSL library is deployed in a huge number of operating systems and applications, including a wide variety of Unix and Linux distributions, as well as OS X. Popular Web servers such as Nginx and ...
PC World

OpenSSL patches eight new vulnerabilities

Server administrators are advised to upgrade OpenSSL again to fix eight new vulnerabilities, two of which can lead to denial-of-service (DoS) attacks. The flaws are only of moderate and low severity, ...