SSL vulnerability affects 33% of the web

March 7, 2016

name: DROWN (Decrypting RSA with Obsolete and Weakened eNcryption)
officially announced: March 2016

what: DROWN is a serious vulnerability that affects HTTPS and other that rely on SSL and TLS, some of the essential cryptographic protocols for Internet . These protocols allow everyone on the Internet to browse the web, use email, shop online and send instant messages without third-parties being able to read the communication.

how: DROWN allows attackers to break the encryption and read or steal sensitive communications, including passwords, credit card numbers, trade secrets, or financial data. The measurements indicate ~33% of all HTTPS servers are vulnerable to the attack. The affected list contains payment processors, big shopping sites, online applications, social media sites and highly accessed international or local news websites.

why: This major Internet vulnerability has resulted from the way cryptography was weakened by U.S. government policies that restricted exporting strong cryptography. These restrictions were designed to make it easier for NSA to decrypt the communication of people abroad.

Find out today

Contact us and mention your HTTPS domain link to find out if you are affected

 

Do you have an SSL installed on your server(s)? If not, kindly tell us in the comments why! If you have, does somebody checked if this vulnerability has affected you sites?

How to be informed in time and stay safe for your customers: our  or the Security audit handles these types of detection and we inform our customers if needed to take any action. There is no extra cost involved for this consultancy. For the recurrent , we even resolve these type of problems.

WP Security: plugin vulnerabilities August

WP Security: plugin vulnerabilities August

Aug 31 2017

For your , be informed about the latest vulnerabilities in WP plugins: AddToAny Share Buttons Conditional Host Header Injection reported by…

Identified as New WP under 30 min

Identified as New WP under 30 min

Aug 03 2017

Your freshly installed, brand new WP is discovered faster than you imagine. Amazingly, even before you are informed. Find out how in…

Unable to receive WP emails

Unable to receive WP emails

Aug 02 2017

If you are unable to receive WordPress emails, then there is a chance that your server is hacked to send spam emails…

WP Security: plugin vulnerabilities July

WP Security: plugin vulnerabilities July

Aug 01 2017

For your , be informed about the latest vulnerabilities in WP plugins: WP Statistics SQL injection reported by Sucuri. Exploit allows…

Unable to Login into WordPress

Unable to Login into WordPress

Jul 31 2017

If you are unable to login to your WordPress site, then there is a chance that hackers may have compromised your admin…

Sudden Drop in Website Traffic

Sudden Drop in Website Traffic

Jul 28 2017

If you look at your analytic reports and see a sudden and constantly dropping trend in your website traffic, then it could…

No comments

Leave a Reply

Your email address will not be published. Required fields are marked *

SSL vulnerability affects 33% of the web

time to read: 2 min
0