Over the weekend, Chris Byrne, an information security consultant and instructor for Cloud Harmonics, published a post to Facebook outlining a serious problem with the processes and third-party API ...

The Internet is a dangerous place. It’s simply too easy to snoop, spoof, and steal unprotected information as it travels over the wires. Last month, I wrote the final article in a series on X.509 ...

High-Tech Bridge has opened a free to use API for the company’s SSL security testing service, which verifies the security and reliability of SSL/TLS implementation on any website or web app according ...

A minimal, automation-first API for checking SSL/TLS certificate status at scale. This API is built for developers and DevOps teams who need clear decisions, not certificate data. It is designed to be ...

Imperva, the security vendor, has made a security breach public that affects customers using the Cloud Web Application Firewall (WAF) product. Formerly known as Incapsula, the Cloud WAF analyzes ...

Developers whose apps are still using HTTP plaintext connections to connect to Twitter's API feeds may find their applications broken from today. Twitter has enforced new rules for developers to ...

Small Axum service that lets Caddy approve on-demand TLS certificates for GitLab Pages custom domains. Caddy calls /api?domain=<requested-host>; the service asks ...

A portion of Imperva’s customer base had their API keys, customer-provided SSL certificates, email addresses, and hashed and salted passwords revealed in the breach, which was discovered last week.