Certificate Authority (CA) - Security Intelligence

Two programmers working on security controls to detect black market tls/ssl certificates

article

Dark Web TLS/SSL Certificates Highlight Need for Shift to Zero Trust Security

Some of the latest website security threats originate from thriving dark web marketplaces for TLS/SSL certificates, which often come packaged with other cybercrime services.

April 11, 2019 | By Koen Van Impe

article

A web browser tab labeled "SSL Certificate."

news

Websites Replace Digital Certificates as Browsers Set Deadlines to Revoke Trust

One of the largest certificate authorities announced that the vast majority of the top 1 million websites had replaced the digital certificates major browsers plan to phase out in the coming months.

March 19, 2018 | By Shane Schick

news

A web browser showing an SSL certificate.

news

Cybercriminals Turn the Tables on Encryption to Develop New Cybersecurity Threats

Malicious actors are now turning the tables on encryption and leveraging SSL connections to create new cybersecurity threats that subvert detection tools.

February 9, 2018 | By Douglas Bonderud

news

news

Public Key Infrastructure Concerns Raise Questions Over Internet Authentication System

According to a recent paper, threat actors are abusing the code signing process associated with public key infrastructure and evading antivirus detection.

November 9, 2017 | By Mark Samuels

news

article

Poor Management of Security Certificates and Keys Leads to Preventable Outages

Despite significant progress in the area of security certificates, many organizations still suffer preventable outages, according to a recent study.

September 1, 2017 | By Larry Loeb

article

Close-up of a browser window showing lock icon during SSL connection.

article

The Evolution of Digital Certificates

Digital certificates are used to authenticate both sides of a browser connection. It's a good first step, but certificates do not assure absolute trust.

July 25, 2017 | By Larry Loeb

article

Multiple graduates holding diplomas and certificates.

news

SSL Certificates Now Need Mandatory Authorization Checks

According to new guidelines, as of September 2017 SSL certificates will have to be checked against a dataset before they can be issued.

April 13, 2017 | By Larry Loeb

news

An SSL certificate displayed in a web browser.

news

Symantec’s SSL Certificate May Get Cut Off by Chrome

In response to alleged violations, Google announced that its Chrome web browser will not trust an SSL certificate from Symantec for more than 279 days.

March 28, 2017 | By Larry Loeb

news

A web browser address bar operating under the secure web protocol HTTPS.

news

New Root Certificate Authority From Google Builds Foundations for Secure Web

Google launched its own root certificate authority as part of a push to implement the secure web protocol HTTPS across all its services and products.

January 31, 2017 | By Mark Samuels

news

A cursor hovering over a secure lock in a URL.

news

GoDaddy Goofs Up on SSL Certificate Security

GoDaddy had a SSL certificate security problem. A flawed authentication protocol caused the site to revoke 9,000 SSL certificates.

January 16, 2017 | By Larry Loeb

news

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Certificate Authority (CA)

Dark Web TLS/SSL Certificates Highlight Need for Shift to Zero Trust Security

Websites Replace Digital Certificates as Browsers Set Deadlines to Revoke Trust

Cybercriminals Turn the Tables on Encryption to Develop New Cybersecurity Threats

Public Key Infrastructure Concerns Raise Questions Over Internet Authentication System

Poor Management of Security Certificates and Keys Leads to Preventable Outages

The Evolution of Digital Certificates

SSL Certificates Now Need Mandatory Authorization Checks

Symantec’s SSL Certificate May Get Cut Off by Chrome

New Root Certificate Authority From Google Builds Foundations for Secure Web

GoDaddy Goofs Up on SSL Certificate Security