Poodle SSL 3.0 Attack
SSL 3.0 Has security holes according to the Google team that affects all the major browsers.
The write up states "is really a critical threat because it is used by both websites and Web browsers and will remain critical as long as SSL 3.0 is supported."
How are they to fix this? this is yet to be seen.
The basic concept is that " in the decade old but still widely used Secure Sockets Layer (SSL) 3.0 cryptographic protocol that could allow an attacker to decrypt contents of encrypted connections to websites."
This could allow sensitive data to be exploited and used.
More information can be seen at:
http://thehackernews.com/2014/10/poodle-ssl-30-attack-exploits-widely_14.html
No comments:
Post a Comment