As a safety precaution to prevent SSL server certificates being exploited for network man-in-the-middle attacks on organizations, vendors that issue SSL server certificates will begin adhering to new issuance guidelines as of Nov. 1. These new rules, as described by members of the industry group Certificate Authority/Browser Forum, mean certificate authorities (CAs) will not issue certificates that contain "internal names" and expire after Nov. 1, 2015.
- Cisco reveals VPNFilter malware infects 500k routers, Ukraine fears they'll be bricked by Saturday
- CPUs take another Spectre-Meltdown speculative execution hit
- Despite education campaigns, Australians are falling harder for scams than ever
- Chrome to strip “secure” from HTTPS sites in September
- The week in security: During Privacy Awareness Week, warnings that we are neither private nor aware