Tag Archive for: ‘POODLE’

New ‘Poodle’ bug internet security flaw discovered – Daily Mail

/in

Daily Mail

New 'Poodle' bug internet security flaw discovered
Daily Mail
A security bug in the widely-used software used to secure the internet has been discovered by three Google researchers. The flaw, dubbed 'Poodle', could allow hackers to gain access to information that should be encrypted in plain text allowing them to …
Poodle: What to know about the latest threat to Internet securityThe Globe and Mail
SSL 3.0 POODLE Internet Security Flaw Could Bite Bitcoin Websites HarderCryptoCoinsNews
​Google discovers another Internet security bug, this one dubbed 'Poodle'Silicon Valley Business Journal
Top Tech News
all 264 news articles »

“internet security” – read more

POODLE attack takes bytes out of your encrypted data – here’s what to do

/in

Heartbleed, Shellshock, Sandworm…and now POODLE. It’s a security hole that could let crooks read your encrypted web traffic. Paul Ducklin takes you through how it works, and what you can do to avoid it, in plain (well, plain-ish) English…
Naked Security – Sophos

Security experts warn of ‘POODLE’ attack against SSL 3.0

/in

Google researchers have found a severe flaw in an obsolete but still used encryption software, which could be exploited to steal sensitive data.

The flaw in SSL 3.0 is more than 15 years old but is still used by modern web browsers and servers. SSL stands for “Secure Sockets Layer,” which encrypts data between a client and server and secures most data sent over the Internet.

Bodo Möller, Thai Duong and Krzysztof Kotowicz of Google developed an attack called “POODLE,” which stands for Padding Oracle On Downgraded Legacy Encryption, according to their research paper.

Web browsers are designed to use newer versions of SSL or TLS (Transport Layer Security), but most browsers will accommodate SSL 3.0 if that’s all that a server can do on the other end.

To read this article in full or to leave a comment, please click here

Network World Security