GlobalSign

OCTOBER 23, 2023

Let’s explore securing Kubernetes plug-ins with SSL / TLS. Increased adoption of Kubernetes controllers requires the right security measures.

116

116

Security Affairs

FEBRUARY 9, 2024

Fortinet warns that the recently discovered critical remote code execution flaw in FortiOS SSL VPN, tracked CVE-2024-21762, is being actively exploited. The vendor recommends to disable SSL VPN as a workaround. “Workaround : disable SSL VPN (disable webmode is NOT a valid workaround). ” reads the advisory.

VPN 110

VPN Firmware Malware Government 110

Bleeping Computer

JUNE 11, 2023

Fortinet has released new Fortigate firmware updates that fix an undisclosed, critical pre-authentication remote code execution vulnerability in SSL VPN devices. [.]

VPN 145

VPN Firmware Authentication 145

Malwarebytes

SEPTEMBER 15, 2021

Secure Sockets Layer (SSL) certificates are what cause your browser to display a padlock icon, indicating that your connection to a websites is secure. On a strictly technical level, SSL was actually superseded by Transport Layer Security (TLS) many years ago, but the name has stuck around. What is the purpose of SSL certificates?

Encryption 97

Encryption Authentication Engineering Phishing 97

Tech Republic Security

SEPTEMBER 23, 2021

Issuing and installing SSL certificates doesn't have to be a challenge, especially when there are tools like acme.sh Jack Wallen shows you how to install and use this handy script.

Encryption 204

Encryption 204

Security Boulevard

JUNE 7, 2022

which Google loves) Yes, it’s possible with an SSL Certificate! The post ‘SSL for SEO’ the 2022 Google Ranking Mantra appeared first on https.in The post ‘SSL for SEO’ the 2022 Google Ranking Mantra appeared first on Security Boulevard. But, what if you could increase your SEO rankings with a simple trick?

108

108

Security Boulevard

JUNE 26, 2023

Is Positive SSL good? For any website desiring to establish… Continue reading Comodo Positive SSL Certificate Review The post Comodo Positive SSL Certificate Review appeared first on SSLWiki. The post Comodo Positive SSL Certificate Review appeared first on Security Boulevard.

52

52

Tech Republic Security

JANUARY 25, 2023

The post How to force Portainer to use HTTPS and upload your SSL certificates for heightened security appeared first on TechRepublic. If Portainer is your go-to GUI for Docker and Kubernetes, you should consider adding a bit of extra security to the deployment.

Network Security 159

Network Security 159

SecureBlitz

JANUARY 27, 2022

If you have been coming across SSL Certificate online and you don’t know what it means, then this article is for you. Here, you will learn everything you must know about SSL Certificate. The post What Is An SSL Certificate?[MUST There are a. MUST READ] appeared first on SecureBlitz Cybersecurity.

Cyber Attacks 112

Cyber Attacks Cybersecurity 112

Security Boulevard

JANUARY 11, 2024

Digital certificates, used with the protocol ‘TLS’ (Transport Layer Security, previously known as ‘SSL’ or Secure Socket Layers) establish secure connections between your web server and the browsers visitors use to view your site. The post Why is my SSL expiring every 3 months? appeared first on Security Boulevard.

Authentication 57

Authentication Cybersecurity 57

Penetration Testing

FEBRUARY 8, 2024

The advisory centered around a... The post CVE-2024-21762 (CVSS 9.6): FortiOS SSL-VPN Zero-Day Pre-Auth RCE Flaw appeared first on Penetration Testing. A stark reminder of this ongoing battle against cyber threats emerged recently when Fortinet, a titan in the realm of network security, issued a critical alert to its customers.

VPN 100

VPN Penetration Testing Cyber threats Network Security 100

Security Affairs

SEPTEMBER 8, 2023

CISA warned that nation-state actors are exploiting flaws in Fortinet FortiOS SSL-VPN and Zoho ManageEngine ServiceDesk Plus. Cybersecurity and Infrastructure Security Agency (CISA) warned that nation-state actors are exploiting security vulnerabilities in Fortinet FortiOS SSL-VPN and Zoho ManageEngine ServiceDesk Plus.

VPN 128

VPN Firewall Accountability Cybersecurity 128

Bleeping Computer

DECEMBER 12, 2022

Fortinet urges customers to patch their appliances against an actively exploited FortiOS SSL-VPN vulnerability that could allow unauthenticated remote code execution on devices. [.].

VPN 140

VPN 140

Heimadal Security

AUGUST 31, 2023

In a recent surge of cyber threats, hackers have targeted Cisco Adaptive Security Appliance (ASA) SSL VPNs using a combination of brute-force attacks and credential stuffing. These attacks have taken advantage of security vulnerabilities, particularly the absence of robust multi-factor authentication (MFA) measures.

Cyber threats 92

Cyber threats Authentication Cybersecurity 92

Security Affairs

DECEMBER 12, 2022

Fortinet fixed an actively exploited FortiOS SSL-VPN flaw that could allow a remote, unauthenticated attacker to execute arbitrary code on devices. “A heap-based buffer overflow vulnerability [CWE-122] in FortiOS SSL-VPN may allow a remote unauthenticated attacker to execute arbitrary code or commands via specifically crafted requests.”

VPN 107

VPN Hacking Cybersecurity Information Security 107

Tech Republic Security

AUGUST 26, 2021

If you need to generate quick SSL certificates for test servers and services, mkcert might be the fastest option available. Jack Wallen shows you how to use this handy tool.

145

145

Appknox

OCTOBER 13, 2021

SSL Pinning is a technique that we use on the client-side to avoid a man-in-the-middle attack by validating the server certificates. The developers embed (or pin) a list of trustful certificates to the client application during development, and use them to compare against the server certificates during runtime.

145

145

Security Boulevard

AUGUST 11, 2021

Before we discuss the differences between the two, let’s first understand what’s common between a Code Signing Certificate and an SSL certificate. Code signing certificate is used for securing software while SSL certificate is used for securing internet communication. But the issuing […].

Authentication 98

Authentication Internet Internet Software 98

Tech Republic Security

MAY 15, 2020

When that software requires SSL, you can enable a snake-oil SSL key for testing purposes. Sometimes admins need to be able to test a web-based solution before deciding it's worth using.

Software 155

Software 155

Tech Republic Security

SEPTEMBER 13, 2021

SSL certificates are an integral component in securing data and connectivity to other systems. Learn tips on how you can use the Linux openssl command to find critical certificate details.

153

153

Security Boulevard

MAY 11, 2021

While there is no doubt that a Secure Sockets Layer (SSL) certificate is crucial for your website to safeguard against cyberattacks, it could be challenging to choose the right one. The post What are the Different Types of SSL Certificates Available? The post What are the Different Types of SSL Certificates Available?

Network Security 108

Network Security 108

Tech Republic Security

OCTOBER 8, 2021

Let's make issuing and installing SSL certificates less of a challenge. Tools like acme.sh Jack Wallen shows you how to install and use this handy script.

Encryption 154

Encryption 154

Bleeping Computer

MARCH 23, 2023

Self-hosted web administration solution CloudPanel was found to have several security issues, including using the same SSL certificate private key across all installations and unintentional overwriting of firewall rules to default to weaker settings. [.]

Firewall 97

Firewall 97

Security Boulevard

APRIL 6, 2021

There was a time when SSL was not a necessity for all websites; only websites that were selling something or collecting credit card information were required to buy SSL certificates. The post SSL is Not Just a Compliance Necessity- Don’t End-Up Buying Any SSL Certificate appeared first on Indusface.

78

78

Bleeping Computer

FEBRUARY 11, 2023

Microsoft's WinGet package manager is currently having problems installing or upgrading packages after WinGet CDN's SSL/TLS certificate expired. [.]

98

98

CSO Magazine

MARCH 28, 2022

SSL and its descendent, TLS, are protocols that encrypt internet traffic, making secure internet communication and ecommerce possible. Secure Sockets Layer, or SSL, was the original name of the protocol when it was developed in the mid-1990s by Netscape, the company that made the most popular Web browser at the time. had serious flaws.

Encryption 60

Encryption eCommerce Internet Internet 60

The Last Watchdog

AUGUST 1, 2023

1, 2023– AppViewX , a leader in automated machine identity management (MIM) and application infrastructure security, today announced the results of a research study conducted by Enterprise Management Associates (EMA) on SSL/TLS Certificate Security. New York, NY, Aug.

Internet 100

Internet Internet Healthcare Banking 100

Bleeping Computer

MAY 23, 2021

The Microsoft Exchange admin portal is currently inaccessible from some browsers after Microsoft forgot to renew the SSL certificate for the website. [.].

145

145

Security Boulevard

SEPTEMBER 2, 2022

What Is TLS/SSL Offloading? TLS/SSL Offloading Definition. A common misconception about TLS/SSL encryption is that a person’s computer connects directly with a web server and information is sent directly between the two. This process is known as TLS/SSL offloading. How Does TLS/SSL Offloading Work?

Encryption 57

Encryption Malware 57

Tech Republic Security

JULY 18, 2023

Array Networks offers SSL VPN gateways to meet a variety of needs for small and medium enterprises. Request a demo now.

VPN 96

VPN 96

SecureBlitz

JANUARY 27, 2022

If you have been coming across SSL Certificate online and you don’t know what it means, then this article is for you. Here, you will learn everything you must know about SSL Certificate. The post SSL Certificate 101 – Everything You Should Know appeared first on SecureBlitz Cybersecurity. There are a.

Cyber Attacks 84

Cyber Attacks Cybersecurity 84

GlobalSign

JUNE 13, 2023

Do you know what SSL/TLS certificates you have in your organization? Read more to learn about the certificate inventory tool that could help you.

86

86

Security Boulevard

APRIL 5, 2023

CT logs are public, append-only cryptographically verifiable logs that record the issuance and revocation of SSL/TLS certificates, allowing anyone to verify the validity and authenticity of a certificate. The post Best SSL Discovery and Monitoring Tools appeared first on Security Boulevard.

Authentication 57

Authentication Accountability 57

Security Affairs

JANUARY 20, 2023

An alleged Chinese threat actor was observed exploiting the recently patched CVE-2022-42475 vulnerability in FortiOS SSL-VPN. Researchers from Mandiant reported that suspected Chinese threat actors exploited the recently patched CVE-2022-42475 vulnerability in FortiOS SSL-VPN as a zero-day.

VPN 98

VPN Firewall Internet Internet 98

Security Boulevard

MAY 7, 2021

Every day thousands of SSL certificates expire. Another SSL certificate expires. The post The Enemy of Uptime: An Expired SSL Certificate appeared first on Security Boulevard. In most cases, these seemingly insignificant moments go unnoticed. Our websites stay secure, our servers keep humming, and it’s business as usual.

103

103

GlobalSign

SEPTEMBER 13, 2023

Containers may provision the DevOps pipeline but how can you safeguard them with SSL/TLS certificates? Read on to find out

Software 84

Software 84

SecurityTrails

FEBRUARY 10, 2021

Learn what are the main risks of using expired SSL certificates, and how to detect if you have any expired SSL within your organization.

Risk 95

Risk 95