1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Proxy authentication flaw can be exploited to crack HTTPS protection

Discussion in 'Help Net Security' started by RSS, Aug 16, 2016.

  1. RSS

    RSS New Member Member

    Mistakes made in the implementation of proxy authentication in a variety of operating systems and applications have resulted in security vulnerabilities that allow MitM attackers to effectively hijack HTTPS sessions, security researcher Jerry Decime has discovered. It has been confirmed that the flaw – dubbed FalseCONNECT – affects products by Apple, Microsoft, Opera and Oracle. Lenovo says that their products are not vulnerable, but other vendors who have been notified of the flaw’s existence are … More →

    Continue reading...

Share This Page