Revealed: How domains owned by Expedia, Mozilla, and Yelp sent bomb hoaxes.
Clever trick allows attackers to obtain valid TLS certificate for hijacked domains.
2018 saw a reduced number of huge DNS-facilitated DDoS attacks. Vendors and service providers believe that malicious impact will drop with continued technology improvements.
ThousandEyes, a firm that provides DNS monitoring, falls prey to its own DNS goof.
https://www.trustedreviews.com/news/google-chrome-70-security-feature-will-axe-trust-hundreds-critical-websites-3602774
The Payment Card Industry (PCI) council have spoken. Early versions of Transport Layer Security (TLS) and Secure Sockets Layer (SSL) are now being forced into obscurity by the Payment Card Industry Data Security Standard (PCI DSS) 3.2.1, pushed there by years of security failures and a technological horizon in which those failures will simply not be acceptable.