Blog

MITM attack

FREAK Attack – Android and Apple Browsers at Risk

 March 5, 2015

Estimated reading time: 3 minutes

A new Internet vulnerability is affecting popular SSL clients across the web. Eerily named FREAK, this flaw allows malicious parties and attackers to force servers to automatically downgrade to weakened ciphers. Once this is done, the attackers can easily crack all encrypted communications of these weakened servers through advanced Man-In-The-Middle...

Latest news updates from the last week

 November 3, 2012

Estimated reading time: 2 minutes

Facebook offers new privacy setting indicators for new users In a move that suggests Facebook has begun to marginally accept that it is responsible for user privacy, the social network has revised the manner in which it informs new users about privacy settings. This includes little indicators like ‘light bulbs’...

Security news updates from the last week

 October 27, 2012

Estimated reading time: 2 minutes

Android apps are still not completely secure, say German researchers German researchers have found that heavily encrypted Android apps are also susceptible to losing crucial data about their users. They tested several free apps from Google Play and found that they could successfully carry out man-in-the-middle attacks against most of...

Why leaving your smartphone WiFi ON causes more harm than good

 October 4, 2012

Estimated reading time: 2 minutes

Many users are under the misconception that leaving their smartphone WiFi switched ON only leads to a persistent battery drain. While this is not inaccurate, the truth is that there is another threat to be aware of. This is the threat of the ‘evil twin’. Anyone who has used WiFi...

Quick Heal 2013 offers domain and sub-domain control for HTTPS sites

 August 28, 2012

Estimated reading time: 2 minutes

HTTPS protocols are utilized by many websites over the Internet today. This secure layer offers protection against man-in-the-middle attacks and phishing exploits. It also helps a user to detect fake websites that ask for personal information. Traditionally, domains that ask for credit/debit card details and login passwords commonly use this....

FAQs on SSL certificates and their importance

 August 7, 2012

Estimated reading time: 3 minutes

While browsing the web a user frequently comes across several pages where a secure channel of communication is required. This is especially true since many attackers have staged phishing attacks and stolen confidential information over the years. Pages that involve financial transactions, login details and other data are hence secured...

Future Watch II: Rogue SSL certificates on the rise

 June 4, 2012

Estimated reading time: 2 minutes

Continuing with our series of predicting potential security threats, this post delves into rogue SSL certificates. This attack vector allows phishers and social engineers to gain complete trust of their victims, the prospects of which are quite frightening. SSL (Secure Socket Layer) certificates are present on pages where a user...