SSL/TLS

Microsoft Defender Flaw Erased DigiCert Root Certificates and Paralyzed Windows Systems

• Malware

Microsoft Defender Flaw Erased DigiCert Root Certificates and Paralyzed Windows Systems

Do Son May 5, 2026 0

On April 2, 2026, DigiCert, a preeminent global authority in digital signatures, fell victim to a sophisticated...

Read More Read more about Microsoft Defender Flaw Erased DigiCert Root Certificates and Paralyzed Windows Systems

Patch Now: GnuTLS Release 3.8.13 Fixes 12 Vulnerabilities

• Vulnerability Report

Patch Now: GnuTLS Release 3.8.13 Fixes 12 Vulnerabilities

Do Son May 4, 2026 0

The GnuTLS project, a vital secure communications library used extensively across the Linux ecosystem to implement SSL,...

Read More Read more about Patch Now: GnuTLS Release 3.8.13 Fixes 12 Vulnerabilities

Handshake Halt: GnuTLS 3.8.12 Fixes TLS 1.3 Crash & CPU Exhaustion

• Vulnerability Report

Handshake Halt: GnuTLS 3.8.12 Fixes TLS 1.3 Crash & CPU Exhaustion

Do Son February 11, 2026 0

The maintainers of GnuTLS, a core library used by countless applications to secure network communications, have released...

Read More Read more about Handshake Halt: GnuTLS 3.8.12 Fixes TLS 1.3 Crash & CPU Exhaustion

Pre-Auth RCE Risk: OpenSSL Patches High-Severity Stack Overflow (CVE-2025-15467)

• Vulnerability Report

Pre-Auth RCE Risk: OpenSSL Patches High-Severity Stack Overflow (CVE-2025-15467)

Do Son January 28, 2026 0

The maintainers of OpenSSL, the cryptographic library that underpins a vast portion of the secure web, have...

Read More Read more about Pre-Auth RCE Risk: OpenSSL Patches High-Severity Stack Overflow (CVE-2025-15467)

Security Tightens: Let’s Encrypt Will Cap Certificate Validity at 45 Days by 2028

• Technology

Security Tightens: Let’s Encrypt Will Cap Certificate Validity at 45 Days by 2028

Do Son December 3, 2025 0

Apple previously submitted a proposal to the CA/Browser Forum — the industry body governing certificate authorities and...

Read More Read more about Security Tightens: Let’s Encrypt Will Cap Certificate Validity at 45 Days by 2028

Firefox Switches to CRLite, Ditching OCSP for Better Speed and Privacy

• Technology

Firefox Switches to CRLite, Ditching OCSP for Better Speed and Privacy

Do Son August 20, 2025 0

The Mozilla Foundation recently announced on its official blog the deployment of the CRLite digital certificate revocation...

Read More Read more about Firefox Switches to CRLite, Ditching OCSP for Better Speed and Privacy

NGINX Makes HTTPS Easier Than Ever with New ACME Module

• Technology

NGINX Makes HTTPS Easier Than Ever with New ACME Module

Do Son August 14, 2025 0

The asynchronous framework server software and reverse proxy NGINX has recently announced the release of an ACME...

Read More Read more about NGINX Makes HTTPS Easier Than Ever with New ACME Module

Good News! Let’s Encrypt Begins Testing IP-Only Certificates — No Domain Needed

• Technology

Good News! Let’s Encrypt Begins Testing IP-Only Certificates — No Domain Needed

Do Son June 27, 2025 0

The free digital certificate authority Let’s Encrypt previously announced plans to offer certificates based solely on IP...

Read More Read more about Good News! Let’s Encrypt Begins Testing IP-Only Certificates — No Domain Needed

Flaw in PostgreSQL JDBC Driver (CVE-2025-49146) Exposes Database Connections to MITM Attacks!

• Vulnerability Report

Flaw in PostgreSQL JDBC Driver (CVE-2025-49146) Exposes Database Connections to MITM Attacks!

Do Son June 13, 2025 0

A recently disclosed vulnerability in the PostgreSQL JDBC Driver (PgJDBC) could allow attackers to intercept database connections...

Read More Read more about Flaw in PostgreSQL JDBC Driver (CVE-2025-49146) Exposes Database Connections to MITM Attacks!