[SecurityWeek] NSA Warns of Risks Posed by Wildcard Certificates, ALPACA Attacks

The National Security Agency last week issued guidance on the risks associated with wildcard TLS certificates and Application Layer Protocols Allowing Cross-Protocol Attacks (ALPACA) techniques.

read more

Source: Read More (SecurityWeek RSS Feed)

You might be interested in …

[ThreatPost] 2FA App Loaded with Banking Trojan Infests 10K Victims via Google Play

All posts, ThreatPost

The Vultur trojan steals bank credentials but asks for permissions to do far more damage down the line. Source: Read More (Threatpost)

Read More

[BleepingComputer] Microsoft Edge just got a ‘Super Duper Secure Mode’ upgrade

Microsoft has announced that the Edge Vulnerability Research team is experimenting with a new feature dubbed “Super Duper Secure Mode” and designed to bring security improvements without significant performance losses. […] Source: Read More (BleepingComputer)

Read More

[HackerNews] Active Directory Bugs Could Let hackers Take Over Windows Domain Controllers

All posts, HackerNews

Microsoft is urging customers to patch two security vulnerabilities in Active Directory domain controllers that it addressed in November following the availability of a proof-of-concept (PoC) tool on December 12. The two vulnerabilities — tracked as CVE-2021-42278 and CVE-2021-42287 — have a severity rating of 7.5 out of a maximum of 10 and concern a privilege escalation flaw affecting the Source: […]

Read More