As a safety precaution to prevent SSL server certificates being exploited for network man-in-the-middle attacks on organizations, vendors that issue SSL server certificates will begin adhering to new issuance guidelines as of Nov. 1. These new rules, as described by members of the industry group Certificate Authority/Browser Forum, mean certificate authorities (CAs) will not issue certificates that contain "internal names" and expire after Nov. 1, 2015.
- Cisco bug lets anyone login to network as admin with a blank password
- Intel ships new Spectre patches: Kaby Lake and Coffee Lake now, Sandy Bridge next
- As NDB kicks in, be careful of overcompensating for past security inaction
- On the eve of game-changing NDB scheme, 59 percent of businesses still don’t understand it
- Google reveals kernel, Windows 10 security bypasses fixed in February’s Patch Tuesday