https

US .gov sites dropping like flies as certs expire

US .gov sites dropping like flies as certs expire

Scuppered by government shutdown.
Jan 17 2019 7:16AM
Aussie corporate and government websites with poor HTTPS redirects outed

Aussie corporate and government websites with poor HTTPS redirects outed

Coincides with release of Chrome 68.
Jul 25 2018 2:08AM
Chrome to remove 'secure' and padlock icon for HTTPS

Chrome to remove 'secure' and padlock icon for HTTPS

Treating the web as safe by default.
May 18 2018 8:05AM
Chrome update prompts DTA to rethink security certs

Chrome update prompts DTA to rethink security certs

Automates processes.
Apr 10 2018 4:11PM
Chrome will mark all HTTP sites 'not secure' from July

Chrome will mark all HTTP sites 'not secure' from July

Ramps up name and shame campaign.
Feb 9 2018 10:18AM
Google to punish Symantec for issuing bogus certs

Google to punish Symantec for issuing bogus certs

Will distrust all Symantec certificates gradually, forcing reissue.
Mar 24 2017 12:20PM
Security products endanger customers through poor TLS interception

Security products endanger customers through poor TLS interception

Introduce Logjam, POODLE, CRIME and other vulnerabilities.
Feb 8 2017 12:15PM
Google sets up own root certificate authority

Google sets up own root certificate authority

Continues push towards secure HTTPS-based web.
Jan 29 2017 9:05PM
Chrome to start shaming HTTP sites

Chrome to start shaming HTTP sites

Will mark as insecure from January.
Sep 9 2016 8:22AM
HEIST attack breaches HTTPS in the browser

HEIST attack breaches HTTPS in the browser

Can tap into HTTPS comms without MITM position.
Aug 5 2016 5:16AM
Long way to go before the web is HTTPS protected

Long way to go before the web is HTTPS protected

Moving can be a struggle for site operators.
Mar 16 2016 9:21AM
Slew of snafus threaten integrity of SSL/TLS

Slew of snafus threaten integrity of SSL/TLS

[Blog post] Digital certificate system too fragile.
Nov 17 2015 2:13PM
Cookies can bypass HTTPS in web browsers

Cookies can bypass HTTPS in web browsers

Fundamental flaw in state management feature could bust open secured web browsing.
Sep 25 2015 9:37AM
OpenSSL patches Logjam vulnerability

OpenSSL patches Logjam vulnerability

Users advised to upgrade.
Jun 12 2015 6:21AM
White House mandates HTTPS-only govt websites

White House mandates HTTPS-only govt websites

While struggling to implement SSL/TLS properly.
Jun 10 2015 10:03AM
LogJam leaves browsers vulnerable to MiTM attack

LogJam leaves browsers vulnerable to MiTM attack

Tens of thousands of web services affected.
May 21 2015 5:53AM
Firefox disables 'opportunistic encryption' to fix HTTPS bypass bug

Firefox disables 'opportunistic encryption' to fix HTTPS bypass bug

Attackers could use fake certificate to get around protections.
Apr 8 2015 9:13AM
EFF to launch free digital cert authority

EFF to launch free digital cert authority

Wants to replace HTTP with HTTPS.
Nov 20 2014 5:08AM
Google to reward secure websites with better search ranking

Google to reward secure websites with better search ranking

Move away from HTTP to HTTPS.
Aug 8 2014 7:40AM
Facebook works to secure data centre links

Facebook works to secure data centre links

Snowden proved "we were wearing our tin foil hats correctly".
Jun 4 2014 12:30PM

Log In

Username / Email:
Password:
  |  Forgot your password?