http://www.straitstimes.com/news/singapore/more-singapore-stories/story/public-wi-fi-users-beware-poodle-20141018
Computer users may want to hold off e-banking or even checking their e-mail over public Wi-Fi networks until Web browser makers fix a newly discovered flaw.
Known as Poodle, which stands for Padding Oracle on Downgraded Legacy Encryption, the bug allows Web sessions and transactions to be hijacked without even needing victims' passwords. It exploits an outdated encryption protocol - Secure Sockets Layer version 3 (SSLv3) - which, ironically, is meant to secure Web links.
 |
| BEWARE OF POODLE |
And SSLv3 is supported by nearly all the Web browsers that are in use today: Google Chrome, Mozilla Firefox and Microsoft Internet Explorer (IE).
The bug was discovered by three Google security researchers, who published a paper about it on Thursday.
No comments:
Post a Comment