Displaying items by tag: HTTPS

COMPANY NEWS: Fastly, a leader in global edge cloud platforms, has announced two major developments in its domain name API and Transport Layer Security (TLS) capabilities: the acquisition of Domainr, an Icann-accredited real-time domain availability API provider, as well as general availability of Certainly, Fastly’s publicly-trusted TLS Certification Authority (CA).

GUEST OPINION: The cyber security world is in turmoil. A new generation of aggressive, layer 7 (L7), HTTPS Flood attacks, also known as Web DDoS Tsunami attacks, is disrupting the market by bypassing organisations’ traditional DDoS protection and web application firewall (WAF) solutions.

Software giant Microsoft claims outages to its Outlook, OneDrive and Azure services earlier this month were due to distributed denial of service attacks staged by a group it calls Storm-1359.

Security vendor WatchGuard Technologies' latest Internet Security Report finds a declines in network-detected malware, a massive increase in endpoint ransomware, and ongoing issues with malware associated with phishing campaigns.

GUEST OPINION: As with all technology, new tools are iterations built on what came before, and classic network logging and metrics are no different.

A new report suggests insufficient steps have been made in the broad adoption of encryption by top websites.

Cloud computing is well and truly entrenched, and with it, software developers are increasingly expected to create and deploy cloud-based services and APIs. There’s a new programming language on the block, Ballerina, which makes it easier for developers to integrate cloud-native services, data, transactions, and processes, in both a pro-code and low-code form.

GUEST RESEARCH: Zscaler, the leader in cloud security, today announced the release of its annual State of Encrypted Attacks Report, which tracked and analysed over 20 billion threats blocked over HTTPS, a protocol originally designed for secure communication over networks. This year's study found an increase of more than 314% year-over-year across geographical areas that include APAC, Europe, and North America, underscoring the need for a zero trust security model and greater traffic inspection than most companies can achieve with legacy firewall-based security models.

COMPANY NEWS: Radware today launched new encrypted protection capabilities as part of its DDoS protection solution.

Security vendor WatchGuard Technologies has published research showing that more than 90% of malware arrives through HTTPS-encrypted connections.

GUEST OPINION: For many organisations, creating an effective data protection strategy to support the adoption of remote work and cloud infrastructure is becoming increasingly urgent.

Mozilla, the developers of the Firefox browser, has knocked back a request from Abu Dhabi-based security outfit DarkMatter to have certificates it issues be automatically accepted as genuine.

More than half of the traffic on the Web is now protected by encryption, according to the Electronic Frontier Foundation, an organisation dedicated to protecting civil liberties online.

With so much happening in time for the launch of Windows 10 on 29 July, it is easy to overlook some other interesting issues.

Citing "broad agreement that HTTPS is the way forward for the web," Mozilla has decided that new features of its software will only be available to secure web sites.

A newly published global security threat report warns that companies may have been taking the wrong security measures in the face of growing threats from increased malware traffic within encrypted (https) web protocols as well as twice the number of attacks on supervisory control and data acquisition (SCADA) systems.

Taking steps to improve your security in one area can reduce it in others.

Twitter has announced some big changes to the way it handles security, toughening the encryption of global traffic in the wake of a number of online security scares.

Concerned about others seeing your search requests? The Ixquick metasearch engine now uses SSL by default.

Some weeks ago, nefarious people hacked a digital certificate vendor and issued themselves bogus certificates.  The main browser producers are responding.  iTWire recommends updating ALL browsers immediately.