As corporations get larger and need to expand their marketing efforts, many organizations look towards the Internet. With millions of people online all at one time, it seems like the marketing capability is endless. But with the internet, things can get real messy, real fast. Malicious “hackers and crackers” are out there, looking for weak security holes and infrastructures to steal information from or to take over. Of course, this has gotten harder to do over the years, but there are still many that try.
So OpenSSL is being patched again, very shortly after the Heartbleed Bug was fixed. According to the OpenSSL Security Advisory, multiple security vulnerabilities affecting the security layer have been recently discovered. One of the security threats actually allowed an attacker to see and modify traffic between an OpenSSL server and the client. While this news might seem bad, finding these vulnerabilities indicate that OpenSSL is frequently monitored by security professionals, and the appropriate steps are being followed to patch these vulnerabilities. This in turn makes OpenSSL a more secure implementation of the protocols SSL/TLS (Secure Socket Layer/Transport Layer Security).
Security researchers have recently discovered a major vulnerability in widely used encryption software that could potentially cause widespread, severe damage to the private data of millions of people around the globe. OpenSSL is a cryptologic software that used by millions of websites throughout the internet to encrypt communications between users and webpages. That data now stands at risk due to the vulnerability, which obviously is causing major concern for end-users and website owners alike. More than a half a million websites are already currently at risk.
Name something that people carry everywhere, drop continuously and rely on to maintain relationships with others. Stumped? If you guessed mobile phones, you’re correct—they’re our most abused, loved and treasured devices—and with technology on the rise, more and more new high tech smartphones and tablets are being pushed onto the market faster than people can keep up with.
Sourcefire, the cyber security company now a part of Cisco, has just confirmed its sponsorship of P0WNAG3. Sourcefire signs on to support the free cyber security summit hosted by TrainACE on November 6 at the Hilton Garden Inn in Greenbelt, MD. P0WNAG3 will feature panel discussions from top industry professionals, breaking information on threat intelligence and mobile app hacking. Attendees will have the chance to learn more about emerging trends in cyber security directly from the top influencers in the country, with live hacking demonstrations too.