ZDNet

Advertisers can track users across the Internet via TLS Session Resumption

An academic paper published last month has shed new light on a new user tracking technique that takes advantage of a legitimate mechanism associated with the TLS (Transport Layer Security) protocol ...
Cloud Security Alliance

Why Zero Trust Needs to Start at the Session Layer

Explains why Zero Trust must start at the session layer, via NHP, to hide endpoints and reduce AI-driven attack surfaces.
ZDNet

Google and Mozilla's message to AV and security firms: Stop trashing HTTPS

A surprisingly large number of antivirus and security products are undermining HTTPS connections and exposing browser users to decryption attacks, according to a study by researchers at Google, ...
Bleeping Computer

Google Chrome's new post-quantum cryptography may break TLS connections

Some Google Chrome users report having issues connecting to websites, servers, and firewalls after Chrome 124 was released last week with the new quantum-resistant X25519Kyber768 encapsulation ...
Linux Journal

Securing Sendmail with TLS

One of the most common uses of network systems is for e-mail-based communications. As such, a great deal of attention has been given to securing e-mail systems. However, most of this focus has been in ...
Hackaday

Security This Week: Racoons In My TLS, Bypassing Frontends, And Obscurity

Raccoon is the next flashy security flaw with a name, cute logo, and a website (and a PDF). Raccoon is a flaw in TLS version prior to 1.3, and seems to be a clever bit of work, albeit one with limited ...