- By Catalin Cimpanu
- April 7th, 2016
API Server Security Leaves a Lot to Be Desired
APIs are generally more unsecure than main servers
- By Catalin Cimpanu
- March 31st, 2016
CloudFlare: 94 Percent of Tor Traffic Is Automated or Malicious
CloudFlare explains how it deals with Tor traffic
- By Catalin Cimpanu
- March 30th, 2016
Hacked Websites Used in Black Hat SEO Campaign Redirecting Users to Adult Sites
Infected websites are hard to detect, only show up for users coming off search engines and for search bots
- By Catalin Cimpanu
- March 24th, 2016
18 Percent of All Web Traffic Is from Malicious Bots
Most bot traffic originates from the US and AWS' network
- By Catalin Cimpanu
- March 19th, 2016
Attackers Can Hijack 95 Percent of All HTTPS Connections
Supporting HSTS is easier than you'd think
- By Catalin Cimpanu
- March 9th, 2016
EFF Says It Issued One Million Free HTTPS Certificates via Let's Encrypt Project
Let's Encrypt project is officially a success!
- By Catalin Cimpanu
- March 4th, 2016
Server Snafu Makes Microsoft Beg for CA Audit Data from Its Partners
Server errors lose data about 147 root cert CA audits
- By Catalin Cimpanu
- March 3rd, 2016
These Are the Top Usernames and Passwords Attackers Use When Hacking Your Server
Most hackers think servers are protected by the password "x"
- By Catalin Cimpanu
- February 22nd, 2016
HTTP GZIP Leaks Data on the General Location of Tor Websites
Some Tor servers may leak timezone info via gzipped files
- By Catalin Cimpanu
- February 18th, 2016
One in Five Data Centers Outages Is Caused by DDoS Attacks
Outages caused by IT equipment failures are the most expensive incidents to fix, at $995 per interruption
- By Catalin Cimpanu
- February 16th, 2016
IETF's Tips for Network Admins on How to Avoid Draining Smartphone Batteries
Rogue routers can launch DoS attacks on your phone's battery
- By Catalin Cimpanu
- February 10th, 2016
Linode VPS Host Accidentally Deploys Servers with the Same SSH Key
Company fixes issue with Ubuntu 15.10 server images
- By Catalin Cimpanu
- January 30th, 2016
Misconfigured Apache Servers Leak Details About Tor Traffic
It's not that bad, but it's not something you could ignore
- By Catalin Cimpanu
- December 2nd, 2015
Critical Medical Equipment Vulnerable to LDAP and SQL Injection Attacks
Attackers can bypass authentication and access patient data
- By Catalin Cimpanu
- November 27th, 2015
VPN Vulnerability "Port Fail" Reveals User's Real IP Address
Attackers can unmask users hidden under a VPN connection
- By Catalin Cimpanu
- November 15th, 2015
RCE Vulnerability Fully Compromises Deutsche Telekom Server
Attackers could have had full control over DT's Web server
- By Catalin Cimpanu
- November 6th, 2015
The Vulnerability That Will Rock the Entire Java World Update
Major bug goes unnoticed in one of Java's most popular libraries, despite getting a CVSS vulnerability score of 10