Google uncovers Poodle flaw in Web encryption standard

By -

Poodle security bug in web encryption SSL 3.0 allows hackers to steal data from email accounts, bank accounts and social networking sites.


Google security engineers have uncovered a major vulnerability dubbed Poodle in Web encryption standard SSL 3.0. The bug makes browsers susceptible to hacking, but researchers state that it is not as harmful as Heartbleed or Shellshock bugs. 

Google security engineers Bodo Möller, Krzysztof Kotowicz and Thai Duong stated in a report that POODLE is a new security hole in Secure Socket Layer (SSL) 3.0 that makes the 15-year-old protocol impossible to use safely and upgrading it will be difficult. “Poodle” stands for Padding Oracle On Downloaded Legacy Encryption.

Security experts stated that the bug could allow hackers to steal browser “cookies,” but was not very
serious. Ivan Ristic, director of application security research with Qualys and an expert in SSL stated,
“It’s quite complicated. It requires the attacker to have a privileged position in the network.”

Jeff Moss, founder of the Def Con hacking conference and an advisor to the U.S. Department
of Homeland Security, stated that hackers could exploit the bug to steal session cookies in browsers,
social networks, taking control of accounts for email providers and banks that use that technology.However, they would need to launch a “man-in-the middle” attack. A common approach used by hackers is to create a rogue WiFi “hot spot” in an Internet cafe, he added.

Moss advised businesses and computer users to stop SSL 3.0 technology on their servers and browsers. “It’s not going to take out the infrastructure of the Internet. But it’s going to be a hassle to fix,” he said.


Rumors that a new bug in OpenSSL software had been circulating on Twitter and technology news sites in recent days. Earlier this year researchers had discovered “Heartbleed” bug in OpenSSL, which affected nearly two-thirds of all websites and thousands of other technology products and a new bug dubbed “Shellshock” was uncovered in a piece of Unix software known as Bash last month.

Source: Google



Comments

Post a Comment

Add your comment here...

Popular posts from this blog

How to calculate age using C program

By -
Image
C Program for Age Calculation Want to calculate age using a C program, but couldn't make the source code!!! Here I come with the program you need. I have made this one month ago, and thought to post in this blog so that you guys be helped. Below is the C program to calculate age. Please notify me if you encounter any problem or error. //This program is created by Rupam Medhi. //You can find more program in http://computz365.blogspot.in #include<stdio.h> main() {     int d1,d2,m1,m2,y1,y2,D,M,Y;     printf("Enter your Birthday-date,month,year\n");     scanf("%d%d%d",&d1,&m1,&y1);     printf("Enter today's date-date,month,year \n");     scanf("%d%d%d",&d2,&m2,&y2);     if(((d1<=d2)&&(m1<=m2))||(d1<=d2)||(m1<=m2))//default and the easy condition     {         D=d2-d1;         M=m2-m1;         Y=y2-y1;     }     if((d1>d2)&&(m1>m2))     {         D=30-d
Read more

How to install Windows 10 with USB Drive?

By -
Image
Well, many of you know this. I am posting this as various variants of human species arrive at this blog . So, let's start.  Requirement: 1) A USB Drive e.g. Pen drive. 2) Image file of the Windows OS 3) Rufus (a utility software) 3) A computer(that's a joke!) Steps: 1) Plug in the USB drive to your PC. 2) Run Rufus and select the ISO file and then start the process. 3) Wait until the operation is complete. 4) After the completion, restart the system and select USB drive from boot menu from BIOS. 5) Then, install Windows 10 and enjoy it.
Read more

Restart Windows Explorer manually after Explorer crashes

By -
Image
Hi guys, I am back with one more tutorial. I have discovered it few days earlier. You must have noticed that Windows Explore crashes sometime due to memory issue, heating issue etc. When this happens, two things may happen. First is that Explore will automatically restart and after few seconds you can use your desktop as previously.Second one is, a menu prompts giving you three options like shown below.  Sometimes even if you select one option, nothing happens! Now this will piss you off. So what you need to do is that keep your head cool and follow this steps. 1. Press "Ctrl+Alt+Del" or "Ctrl+Alt+Esc". 2. If you have used first method, select "Start Task Manager". You will automatically see Task Manager prompting in second option. 3. Now, in Task Manager go to "Applications" and click on "New Task" from right side corner at the bottom".  4. Now a new window will appear. In that, type "cmd" and hit
Read more