man in the middle attack

(get it in RSS or Atom)

Gogo forges YouTube SSL certificate to throttle high-bandwith usage on flights

Plane. Image courtesy of Shutterstock.

It swears it's not intercepting user data, but issuing a fake HTTPS certificate sure doesn't make us feel warm and fuzzy.

Turkish Certificate Authority screwup leads to attempted Google impersonation

shutterstock_brokenpadlock250

Another Certificate Authority has been caught out having issued certificates that were being used to impersonate Google. Does the SSL padlock not mean we are safe anymore?

A picked pocket in Mallorca reveals chink in chip-and-PIN security

A picked pocket in Mallorca reveals widespread hole in chip-and-PIN security

Researchers at Cambridge University are warning that a issue common to ATMs and point-of-sale terminals could enable attackers to clone secure EMV Chip and PIN cards.