I changed the SSL Labs rating criteria to stop penalizing sites that do not implement server-side mitigations for the BEAST attack.
When Juliano and Thai disclosed the CRIME attack last year, it was clear that the same attack technique could be applied to any other compressed data, and compressed response bodies (via HTTP compression) in particular.
Qualys will release the beta of its new cloud WAF solution as an Amazon Machine Image (AMI) and as a VMware virtual image for on-premise deployments starting August 1.
I am not a paranoid person and most industry conferences I go to donít generate any worries about security.
We have seven bulletins from Microsoft this month, addressing a total of 34 vulnerabilities.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.