Yahoo Still Remains Vulnerable

-


The first thing you need to do after getting your house or apartment is robbed, of course, change the lock. Yahoo does not seem to think so, since the same practices that were in place when they are raped are still used according to a new report Venafi.


Moreover, their practices have been known for years as dangerous. Venafi provides simple: if you are a Yahoo user, you should be concerned about this. Here is what he did (or did not): the most important, 27 percent of certificates on external sites Yahoo has not changed since January 2015.


"Replacement certificates after a violation is a mitigation of critical practice, unless the certificates are replaced by the standard organizations can not be certain that the attackers do not have continuous access to encrypted communications," says Venafi . Over the past 90 days, 519 certificates were issued, leading to the conclusion that Venafi Yahoo "has the ability to find and replace the digital certificate", which he considers a common problem.


In addition, Venafi said that a series of "amazing" digital certificates Yahoo use MD5, a cryptographic hash function that is known to be vulnerable to brute force attacks. Nearly half (41 percent) of external certificates Yahoo uses a hashing algorithm considered dangerous.


"In our experience felonies, like that suffered by Yahoo, often accompanied by the relative weakness of cryptographic controls," said Alex Kaplunov, vice president of engineering Venafi. "To confirm this hypothesis, we take an in-depth look the exterior cladding Yahoo! web properties and details of how these sites use encryption. We found encryption practices in these properties are relatively low. This is not surprising. in our experience, most companies, including global brands with deep investments in cybersecurity, have low cryptographic controls ".

Comments

Post a Comment

Popular posts from this blog

Download KMSAuto Net 2016 v1.4.8 Portable

-
Image
KMSAuto Net 2016 KMSAuto Net – automatic KMS-activator for operating systems Windows VL editions: Vista, 7, 8, 8.1, 10, Server 2008, 2008 R2, 2012, 2012 R2 also Office 2010, 2013, 2016. KMSAuto Net can Activate Windows Vista Business/N/Enterprise/N Windows 7 Professional/N/Enterprise/N Windows 8 All Versions Windows 8.1 All Versions Windows 10 Technical Preview All Versions Office 2010/2013 /2016 All Versions Windows Server 2008/Standard/Datacenter/Enterprise/2008R2 Windows Server 2012/Standard/Datacenter/2012R2 What’s New Not available Screenshots below; Download Links KMSAuto Net 2016 v1.4.8 Portable.rar / Mirror (8.7 MB) KMSAuto Net 2015 Links Coming soon........
Read more

How To Get New Airtel 7GB for N2000 | Airtel REDHOT Promo 2017

-
Image
Airtel RedHot Promo has been out since last year and has been blazing. This is a promo whereby you recharge yout airt line regularly and win big whopping cash of up to 10mIllion naira for free. Now, today airtel REDHOT Promo has upgraded by offering a whooping 7GB dat for just 2000 Naira to browse and surf the net on all devices including Android phones, tablets, iPhones, iPads, and laptops. This is not a BB Plan oo lol This is actually a bonus data just like the MTN double data bonus where you get 100% bonus on any data plan you purchase valid for one month. But the little difference is that doesn't involve Imei tweaking. See Also... Latest Airtel Data Plans | Cheap plans However, i got this message from Airtel and I’m sure Airtel users and fans got the same message as well. Free 3.5GB waiting for you & a chance to win 10Million in the Airtel Redhot Promo. Dial *437*2# and activate 3.5GB and get extra 3.5GB for N2000 valid/30 days How To Activate ? Dial *437*2# to activate
Read more