Cybercriminals are using a new method to evade detection to make sure that the traffic generated by their malicious campaigns is not being detected, a technique based on SSL/TLS signature ...

Part 6 of a six-part article: Just because you checked a few boxes on your Microsoft Exchange Server does not mean that there is secure TLS encryption between your domain and another SMTP server that ...

A team of researchers has published a paper that explains a number of attacks against websites and Web-based applications running TLS. A team of researchers has published a paper that explains a ...

Part 3 of a six-part article: The RFC 2246 document states the following: “The cryptographic parameters of the session state are produced by the TLS Handshake Protocol, which operates on top of the ...

You could miss it if you weren't paying close attention through all the Heartbleed blather, but last week Apple patched a severe problem in their TLS/SSL code in iOS and OS X. An attacker in a ...

You may have noticed that Google's Chrome web browser now marks all websites without Transport Layer Security (TLS) as insecure. So, it's past time to secure your ...

Researchers have found a new covert data exchange technique that abuses the TLS protocol that can circumvent traditional network perimeter protections. Researchers have released a proof-of-concept ...