certificates Archives - Help Net Security

certificates

Only 54% of security pros have a written policy on length and randomness for keys for machine identities

December 27, 2019

People rely on usernames and passwords to identify themselves to machines so they can gain access to data and services. Machines also need to authenticate themselves to each …

Most DevOps pros feel proper certificate issuance policies slow them down

December 16, 2019

75% of DevOps professionals are concerned that policies for issuing certificates slow down development, and over a third (39%) believe developers should be able to circumvent …

Trusted certificates make phishing websites appear valid

November 18, 2019

There has been a rampant growth of look-alike domains, which are often used to steal sensitive data from online shoppers. Venafi analyzed suspicious domains targeting 20 major …

The promise and peril of post quantum computing

November 7, 2019

In this Help Net Security podcast, Avesta Hojjati, Head of R&D at DigiCert, talks about the security implications of post quantum computing. Here’s a transcript of the …

How seriously are businesses taking their PKI security?

October 16, 2019

While most enterprises demonstrate a committed effort towards maintaining a well-rounded PKI setup, they still fall short in several key categories. The post-Black Hat survey …

Analysis reveals the most common causes behind mis-issued SSL/TLS certificates

October 14, 2019

We should be able to trust public key certificates, but this is the real world: mistakes and “mistakes” happen. Researchers from Indiana University Bloomington …

The probability that an EV SSL certificate is associated with a bad domain is 0.013%

August 1, 2019

In 2018, phishing attacks were attempted 482.5 million times, more than doubling the number of incidents in 2017. New research conducted by the Georgia Institute of Technology …

Certificate-related outages impact the reputation of financial services organizations

July 18, 2019

Financial services organizations are more likely to have digital certificate-related outages than other industries, a Venafi study reveals. Over 100 CIOs in the financial …

Code signing keys and certificates are crucial security assets, are you protecting them?

June 13, 2019

Only 28 percent of organizations consistently enforce a defined security process for code signing certificates, a Venafi study of over 320 security professionals in the U.S., …

PII capturing websites still applying poor security measures one year after GDPR

May 13, 2019

One year after the EU General Data Protection Regulation (GDPR) went into effect, 1 in 10 PII capturing websites belonging to the top 10 UK financial services organizations …

CIOs admit certificate-related outages routinely impact critical business applications and services

March 29, 2019

Certificate-related outages harm the reliability and availability of vital network systems and services while also being extremely difficult to diagnose and remediate. …

Cybercriminals are increasingly using encryption to conceal and launch attacks

March 26, 2019

In this Help Net Security podcast, Deepen Desai, VP Security Research & Operations at Zscaler, talks about the latest Zscaler Cloud Security Insight Report, which focuses …

certificates

Only 54% of security pros have a written policy on length and randomness for keys for machine identities

Most DevOps pros feel proper certificate issuance policies slow them down

Trusted certificates make phishing websites appear valid

The promise and peril of post quantum computing

How seriously are businesses taking their PKI security?

Analysis reveals the most common causes behind mis-issued SSL/TLS certificates

The probability that an EV SSL certificate is associated with a bad domain is 0.013%

Certificate-related outages impact the reputation of financial services organizations

Code signing keys and certificates are crucial security assets, are you protecting them?

PII capturing websites still applying poor security measures one year after GDPR

CIOs admit certificate-related outages routinely impact critical business applications and services

Cybercriminals are increasingly using encryption to conceal and launch attacks

Don't miss

MDhex vulnerabilities open GE Healthcare patient monitoring devices to attackers

Lessons from Microsoft’s 250 million data record exposure

CISOs: Make 2020 the year you focus on third-party cyber risk

IoC Scanner shows if Citrix appliances have been compromised via CVE-2019-19781

It’s time to patch your Cisco security solutions again