Explanation of the new attack on WPA/WPA2 networks

While last weekend was not particularly busy in terms of Infosec news, one thing that stood out was the identification and implementation of a new WPA attack.
The purpose of this blog article is to help you identify how your wireless infrastructure (personal or business) is affected by explaining the differences between existing attacks and this new attack.

Share this:

Important Changes to Domain Ownership Validation for all Certification Authorities

Beginning August 1, 2018, all Certification Authorities (CAs) will be required to modify domain ownership validation methods in order to comply with Ballot 218 and baseline requirements of the CA/Browser Forum (CA/B Forum).

Share this:

Are all your websites and subdomains SSL-ready for Chrome 68 in July 2018?

Google is taking the next step in keeping Chrome users safe by marking all HTTP pages as not secure from the release of Chrome 68 in July 2018.
Are you SSL-ready or will your potential and existing customers be told that your website is not secure?

Share this:

SSL247 at Infosecurity Europe 2018

Meet us at Infosecurity, Europe’s biggest exhibition on information security, from the 5th to 7th of June in London!

Share this:

Online Certificate Status Protocol server changes for Symantec MPKI 8

DigiCert recently announced that they are updating the Online Certificate Status Protocol (OCSP) infrastructure for Symantec MPKI 8.

Share this:

Webinar – The Fundamentals of Social Engineering

During a webinar that took place last week, Loïc Castel, the head of our Penetration Testing unit, explained the fundamentals of social engineering.

Share this:

Your certs issued before June 1st 2016 may be impacted due to a loss in trust between Google and DigiCert Symantec

SSL247® would like to update you on a proposal from Google that could affect your SSL certificate(s) issued before June 1st 2016 by Symantec, GeoTrust, Thawte or RapidSSL.

Share this:

Christmas Party sponsored by Comodo

A big thank you to Comodo for sponsoring our Christmas Party at the Gunmakers located in the heart of London, Clerkenwell.

Share this:

ISO 27001 and ISO 9001 - Our commitment to data security and the best service and support

SSL247® has achieved ISO 9001:2015 accreditation, demonstrating our commitment to customer service and quality in delivery of our products, services and support, and renewed our ISO 27001:2013 accreditation, confirming our strong position on keeping our data and your data, as well as our staff and premises, secure.

Share this:

SSL247® has been named EMEA Symantec Champion 2017

During this year’s Symantec Platinum Partner Roundtable, the annual event held for Symantec’s top EMEA partners, SSL247® was once again awarded the EMEA Symantec Champion for 2017.

Share this:

SSL247®’s new office in the heart of London

SSl247® are pleased to announce the opening of our new office in Farringdon!

Share this:

Mandatory Certificate Authority Authorisation (CAA) checking from September 2017

From September 8, 2017, Certificate Authority Authorisation (CAA) checking and processing will be mandatory for all Certificate Authorities (CAs).

Share this:

Chrome extends deadlines while DigiCert plans Symantec Web Security acquisition

In the last two weeks, we’ve seen announcements from Google Chrome, as well as DigiCert and Symantec, that may affect you as user of Symantec, GeoTrust, Thawte or RapidSSL certificates, over the next few months.

Share this:

Google’s proposal on SSL certificates issued before June 1, 2016

Google submitted a proposal stating that in August 2017, Google’s Chrome browser (version 62) will gradually begin mistrusting SSL certificates issued before June 1, 2016 by Symantec, GeoTrust, Thawte and RapidSSL.

Share this:

Penetration Testing and WannaCry/WannaCrypt

As you probably already know, a new piece of ransomware had quite an impact this weekend and the damage it caused is still being dealt with. The name of this piece of malware is WannaCry or WannaCrypt and its purpose is to encrypt most of your assets’ data in order to get a ransom, in money.

Share this:

RAA ransomware discovered

Security researchers have discovered a new ransomware known as ‘RAA.’ RAA impersonates a regular email (.JS) file attachment and is made entirely from Javascript rather than an executable file – like ‘Ransom32’, making it more effective depending on the situation.
Share this:

eIDAS regulation - What should you expect ?

The new EU eIDAS regulation that oversees electronic identification and trusted services will be enforced from July 2016.

Share this:

The EU's GDPR: What you need to know

Policy makers in Brussels have recognised the 1995 ‘General Data Protection Regulation’ (GDPR) is no longer adequate considering the vast amounts of digital information being used worldwide. Despite having just gotten used to July’s revised ‘ePrivacy Directive’ (The cookie law), organisations or businesses that process data relevant to EU based individuals will soon be required to comply with an updated 1995 GDPR regulation – to be enforced from mid-2018.
Share this:

Google's Certificate Transparency Policy set to expand

Certificate Transparency (CT) was a standard introduced in November 2014 by Google.The main objective was to fix different structural flaws in the SSL certificate system which could facilitate a wide range of cyberattacks if left unchecked (e.g. spoofing, Man-In-The-Middle attacks).
Share this:

Using Trust To Boost Revenue: A Simple Guide

As mentioned in our 2015 Christmas blog, online consumption and spending have been growing consistently year-on-year. This trend is a massive opportunity for businesses – like yours – to enhance revenue but many continue to underestimate – or entirely overlook – the relationship between trust and revenue, limiting potential gains as a result.
Share this: