1 Star2 Stars3 Stars4 Stars5 Stars (8 votes, average: 5.00 out of 5)
Loading...

UCLA Falls Victim to Global Cyber Attack

Worldwide Threat of Ransomware Targets Institutions and Companies In a recent wave of cyber attacks targeting institutions and companies worldwide, the University of California, Los Angeles (UCLA) has confirmed its inclusion among the victims. The attack has been attributed to a notorious ransomware gang known as “CL0P,” as declared by…
1 Star2 Stars3 Stars4 Stars5 Stars (14 votes, average: 5.00 out of 5)
Loading...

Best SSL Certificate Providers to Prevent Digital Threats

Imagine the dismay of potential visitors when they encounter a daunting message in their browser warning them about the lack of security on your site. Fear not; we are here to illuminate a simple yet powerful solution: a secure sockets layer (SSL) certificate. At Certera, we understand the significance of…
1 Star2 Stars3 Stars4 Stars5 Stars (8 votes, average: 5.00 out of 5)
Loading...

Unaddressed High-Risk Vulnerabilities Revealed in the 2023 OSSRA Report

The recently released 2023 “Open Source Security and Risk Analysis” (OSSRA) report has sent shockwaves through the cybersecurity community, exposing a troubling trend in organizations’ approach to patching vulnerabilities. The report’s findings paint a stark reality, highlighting that 48% of codebases surveyed harbored high-risk vulnerabilities. As organizations rely heavily on…
1 Star2 Stars3 Stars4 Stars5 Stars (11 votes, average: 5.00 out of 5)
Loading...

What Is OCSP Stapling or SSL Stapling? – A Detailed Guide

OCSP stapling renders it more accessible and more rapid for a customer than ever to check the status of an SSL/TLS certificate’s revocation. It is an enhancement over the existing industry standard, OCSP. But what exactly is OCSP stapling, and why does it matter for the security of your website?…
1 Star2 Stars3 Stars4 Stars5 Stars (11 votes, average: 5.00 out of 5)
Loading...

Root Certificate vs Intermediate Certificate – The Real Difference

You may undoubtedly come across the terms “root certificates” and “intermediate certificates” whenever you get an SSL certificate for your website. After all, it is normal to fail to differentiate the two terms. So, let’s get started without further delay. Since the ZIP archive package that you get in an…
1 Star2 Stars3 Stars4 Stars5 Stars (10 votes, average: 5.00 out of 5)
Loading...

What Is Homomorphic Encryption?

Homomorphism is an algebraic term that gives rise to the word homomorphic. “A homomorphism is a structure-preserving map between two identical algebraic structures, such as two groups, two rings, or two vector spaces.” (Wiki source) Homomorphic encryption is a kind of encryption that enables users to carry out binary operations…
1 Star2 Stars3 Stars4 Stars5 Stars (14 votes, average: 4.79 out of 5)
Loading...

What is a Cipher? Types of Ciphers in Cryptography

Ciphers are often grouped based on their operation and how their key is applied to encryption and decryption. Block ciphers combine symbols into a fixed-size message (the block), whereas stream ciphers use a continuous stream of symbols. The same key is used for encryption and decryption when utilizing a symmetric…
1 Star2 Stars3 Stars4 Stars5 Stars (8 votes, average: 5.00 out of 5)
Loading...

New Private Key Storage Requirement for Code Signing Certificate

Background Baseline Requirements (BRs) for granting CodeSigning Certificates have been updated, according to the Certificate Authority/Browser (CA/B) Forum. For both Standard and EV CodeSigning Certificates, a private key must be created and secured in a FIPS 140-2 Level 2 or Common Criteria EAL 4+ compliant device effective on June 1,…
1 Star2 Stars3 Stars4 Stars5 Stars (9 votes, average: 5.00 out of 5)
Loading...

Massive DDoS Attacks on Outlook, OneDrive, and other Microsoft 365 Services

Microsoft admits that malicious DDoS attacks in early June crippled its cloud services- Azure, Outlook, and OneDrive. Early in June, Microsoft’s flagship office suite, which includes the file-sharing applications OneDrive and Outlook email, experienced periodic but significant service interruptions. A mysterious hacktivist group took the brunt of the responsibility, claiming that…
1 Star2 Stars3 Stars4 Stars5 Stars (7 votes, average: 5.00 out of 5)
Loading...

A Security Vulnerability in WooCommerce Stripe Gateway Affects Over 900K Websites

A security vulnerability was discovered in the WooCommerce Stripe payment gateway plugin, making it possible for an attacker to collect personally identifiable information (PII) from stores using the plugin. Security analysts rated the attack a high grade of 7.5 on a rating scale of 1 to 10, and it does…
1 Star2 Stars3 Stars4 Stars5 Stars (10 votes, average: 5.00 out of 5)
Loading...

What Is a Certificate Revocation List? [CRL]

The foundation of Public Key Infrastructure (PKI), which secures billions of online transactions, is the X.509 digital certificate standard. But what will happen if these certificates or the keys that go with them have an issue? They need to be revoked since it is clear that they can no longer be…
1 Star2 Stars3 Stars4 Stars5 Stars (7 votes, average: 5.00 out of 5)
Loading...

Maximizing Your ROI: How Consulting Services Can Improve Your Bottom Line

Are you trying to figure out how to improve business operations to the next level? With the proper IT consulting services partner/business consulting services like Certera, you can maximize and optimize your ROI in ways that will impact how your organization works. To accomplish this, it could be essential to…
1 Star2 Stars3 Stars4 Stars5 Stars (9 votes, average: 5.00 out of 5)
Loading...

OCSP vs. CRL: What is the Difference?

Browsers verify the validity of a website’s TLS certificate before connecting to it, and they display a warning message if the certificate has been revoked. OCSP, CRLs, OCSP must-staple, and OCSP stapling are revocations status-checking techniques browsers use. This article analyses and compares two techniques, named CRL vs OCSP. The…
1 Star2 Stars3 Stars4 Stars5 Stars (8 votes, average: 5.00 out of 5)
Loading...

Create Code Signing Certificate using the Key Storage Provider

The following procedure will demonstrate how to generate a Code Signing Certificate request using a key generated and stored in the YubiHSM 2 using the Key Storage Provider (KSP). You can use the Microsoft “signtool tool” to digitally certify Windows binaries with this code signing certificate. Let’s take a closer…