Recommendations TLS heartbleed - The message from the CEO

5:13 PM
Recommendations TLS heartbleed - The message from the CEO - VPN

in the light of recent events involving the recently discovered vulnerability in OpenSSL, we want to draw your attention to a few things.

First, we have thoroughly checked our network and infrastructure and can confirm that any of the VPN servers or infrastructure is vulnerable to the new OpenSSL bug heartbleed . is and has always been safe to use VPN.

Second, we want to explain how you heartbleed can have an impact.

This vulnerability allows attackers to not only get full access to targeted systems, but also to divert its SSL certificates and private keys. There are over half a million vulnerable sites, and it is very likely that their SSL certificates can be, or may have already been stolen.

As webmasters struggling to solve this problem, we believe that a significant amount of vulnerable websites will not perform all the necessary steps, as these include routine methods and complexes, such as SSL certificate revocation and renewal. Obviously some pirate groups already collect SSL identities of all vulnerable hosts to reproduce attacks later.

In this way, even if the OpenSSL vulnerability is fixed, if the SSL certificate is the same for a fraudster can produce a "Man in the Middle" attack. This type of attack allows the interception of all traffic between the victim and webhost, including your passwords, user names and other sensitive data.

Case intercepted SSL certificate attacks possible, even against websites with SSL. This means that even if a victim uses https: // and a sign of SSL in the green address bar, its data can be intercepted. This type of attack was rarely possible earlier that SSL certificates are generally well protected by webhosts; However, heartbleed makes this attack possible, as it allows hackers to expose the host's SSL identity.

The best way to protect against this is to use VPN.

users with the VPN active VPN connection will prevent any type of "Man in the Middle" attacks, as all their traffic will pass through an encrypted tunnel using secure DNS servers and trust. The VPN makes it impossible to re-route your traffic or poison.

Therefore, we encourage you to use VPN for all networks that are not trusted networks.

Stay safe!

team VPN

Previous
Next Post »
0 Komentar