Threat Post

Mozilla Patching Firefox Certificate Pinning Vulnerability

Mozilla is expected tomorrow to patch a critical certificate pinning vulnerability in Firefox’s automated update process for extensions. Mozilla is expected tomorrow to patch a critical vulnerability ...
Infosecurity-magazine.com

Putting TLS Pinning in Your Mobile Apps

For mobile applications, Transport Layer Security (TLS) certificate pinning goes a long way toward building security into an app and enhancing user and data privacy. The successor protocol to Secure ...
Threat Post

Banking Apps Found Vulnerable to MITM Attacks

Using a free tool called Spinner, researchers identified certificate pinning vulnerabilities in mobile banking apps that left customers vulnerable to man-in-the-middle attacks. Leading US and UK-based ...
Ars Technica

SSL fix flags forged certificates before they’re accepted by browsers

Researchers have proposed an extension to the Internet's foundation of trust that's designed to root out fraudulent secure sockets layer (SSL) certificates before attackers can use them to impersonate ...
Business Wire

Approov Introduces Free Tool to Help Thwart Mobile App API Man-in-the-Middle Attacks

SAN JOSE, Calif. & EDINBURGH, Scotland--(BUSINESS WIRE)--Approov, creators of advanced API threat protection solutions, today introduced the Mobile Certificate Pinning Generator, a free tool to help ...
TWCN Tech News

The server certificate did not match any of the expected values, 0x8a15005e

In this article, we will look at how to fix The server certificate did not match any of the expected values, Error 0x8a15005e. The issue happens when a user is trying ...