‘Most cyber attacks hide in encrypted web traffic’
Most cyber-attacks take place with malware hidden in encrypted web traffic. This is what Zscaler found out in its ThreatLabz 2023 State of Encrypted Attacks Report.
According to Zscaler's annual report, the spread of cyber threats via encrypted (HTTPS) web traffic is increasing every year. In 20... Read more
EU revamps eIDAS with law allowing member states to track internet sessions
EU lawmakers voted the past week on a second version of the European Digital Identity Regulation. It includes an idea experts say will again make the internet less secure. Lawmakers seem reluctant to act on these warnings.
The piece of legislation is perhaps more commonly known as eIDAS 2.0. Th... Read more
Google implements new security and AI features in Chrome browser
The Google Chrome browser is getting new security and AI features. More risky requests based on the HTTP protocol will now be upgraded to the HTTPS protocol by default. In addition, the browser may get a built-in AI tool for text rewriting.
Google has been adding new functionality to its Google ... Read more
Fastly learns from incidents with insecure websites and launches Certainly
Fastly is releasing a TLS Certficiation Authority service. The public availability of the service comes simultaneously with the completion of the acquisition of Domainr.
Certainly is a Transport Layer Security (TLS) Certification Authority service. That is supposed to better secure internet user... Read more
Google to start removing secure website indicators in Chrome
Google Chrome will soon replace its iconic lock symbol with a new icon. The company looks to represent a website's security level more accurately. The move could change how we understand website security.
The lock icon was first introduced to indicate that a website uses HTTPS encryption to secu... Read more
Node.js 19 is now generally available
The Node.js team recently released Node.js 19. The update aims to modernize the V8 JavaScript engine to version 10.7 while making HTTP(s)/1.1 KeepAlive default.
The V8 JavaScript engine brings the latest version of Intl.NumberFormat to JavaScript API and allows developers to establish reusable f... Read more
Cloudflare fends off largest HTTPS DDoS attack of all time
Cloudflare recently repelled the largest HTTPS DDoS attack of all time. The attack executed as many as 26 million HTTPS requests per second using hijacked servers and virtual machines.
The attack targeted one of Cloudflare's customers. The hackers used a botnet consisting of 5,067 IoT devices, s... Read more
‘One-third of websites still don’t use https encryption’
According to a monthly survey by security researcher Scott Helme, one-third of the largest global websites do not use https encryption.
In his research for November 2021, researcher Scott Helme focuses on techniques that ensure the security of websites. He used a crawler to examine the 1 million... Read more
Mozilla will disable FTP in Firefox 88 and remove it in Firefox 90
FTP links will no longer be handled by Mozilla Firefox. The browser is planning to rip out its FTP implementation and pass on the job to other applications. A year ago, the browser announced that it was going to disable support for FTP.
It also said that the move would be delayed because of the ... Read more
Chrome upgrades HTTP to HTTPS, if available
Google’s engineers are revered in the browser industry. They have been some of the most ardent proponents of browser security features. Over the past few years, they have been working with teams behind browsers like Tor and Firefox, to bring about many of the changes we see in browsers today.
... Read more