Microsoft is finally making a change to Windows that has been long overdue. The company is killing support for 1024-bit RSA keys for TLS authentication making future Windows more secure.
Tls RSS
Microsoft continues its plans to end support for Transport Layer Security (TLS) 1.0 and 1.1 from its services with today's reveal that both will be removed from Azure storage accounts on Nov. 1.
Microsoft will be disabling TLS versions 1.0 and 1.1 on Windows very soon. The company announced it earlier today and is part of its broader strategy to make the next Windows versions more secure.
Microsoft will be disabling TLS versions 1.0 and 1.1 on Windows very soon. The company announced it earlier today and is part of its broader strategy to make the whole of Windows OS more secure.
Google Chrome 110 is the first version of the browser that is expected to hit the new "Early Stable" channel. It contains a lot of new features that will be available for Stable on February 7.
Microsoft Edge 109 is now available for download in the Stable Channel. The latest release adds account linking, changes to TLS certificate verification, and text predictions to let you type faster.
Microsoft Edge has reached its latest stable version 108.0.1462.42. The new version helps enhance privacy with the help of the TLS-encrypted ECH. There are a couple of more features in it too.
Microsoft has released an out-of-band (OOB) update for Windows 10 versions that addresses an issue with SSL and TLS. The issue was introduced with the recent October Patch Tuesday update.
The October 2022 Patch Tuesday, which was released last week, has serious issues when it comes to network connectivity. Microsoft has released an OOB update (KB5020387) to fix the problems.
_medium.jpg)
Microsoft has confirmed that its October Patch Tuesday across all Windows versions can have TLS/SSL handshake failures. This is leading to network connection issues between clients and servers.
Microsoft Edge 105 (and newer) support Encrypted Client Hello, a mechanism that enhances privacy by encrypting metadata in TLS. This guide will show you how to improve privacy by enabling ECH in Edge.
Microsoft revealed its plans to disable old Transport Layer Security protocols in Internet Explorer and EdgeHTML next month. The company will pull the plug on TLS 1.0 and 1.1 on September 13, 2022.
Chrome 93 will be rolling out later today. It removes support for the 3DES cipher suite and adds better support for multi-screen window placement. Google has also started to develop WebOTP on desktop.
Microsoft has provided a roadmap for the removal of legacy versions of the TLS protocol from its Edge and Internet Explorer browsers. The Chromium-based version of Edge will remove them in July.
Mozilla has released Firefox 74. While it doesn't feature large UI changes, it does improve usability, for example, third-party programs can no longer install unwanted add-ons in your browser.
NordVPN has acknowledged that there was a breach of one of its datacenters back in March 2018 and that it has only known about the issue for a few months. Most users were unaffected by the breach.
Following up on its commitment to drop support for legacy versions of the TLS protocol, Google has detailed how the technology will be deprecated in its browser over the next few months.
Mozilla has deprecated TLS 1.0 and 1.1 in the latest Firefox Nightly builds. The move comes in preparation for most major browsers, including Chrome, disabling those protocols in March next year.
_medium.jpg)
Apple has quietly put out a support page announcing the deprecation of TLS certificates signed with SHA-1 in iOS 13 and macOS 10.15 Catalina two years after other tech giants adopted the change.
While there are currently no known vulnerabilities in TLS 1.0 and 1.1, Microsoft plans to end support for these old protocols in supported versions of Microsoft Edge and IE 11 by 2020.
Cloudflare has announced its new Spectrum service, which extends the company's DDoS protection service to any TCP protocol, including gaming services, remote server access, and email.
After four years of debates, including attempts from the financial sector to soften it, Transport Layer Security (TLS) protocol version 1.3 has been finished and is ready to be implemented.
WordPress.com, the paid side of WordPress, has started to utilize the Let's Encrypt project to enable HTTPS for all of the websites with custom domains that are hosted on the service.
In a blog post today, Google has outlined a couple of small, but noticeable, changes aimed at providing better security feedback for users of their Gmail web clients.
In a move to improve email security, Gmail will be implementing a new feature that warns a user if an incoming email is unencrypted. The feature will roll out in the months to come.
SSL certificates exist to increase security and prevent snooping on your browsing sessions. Gogo believes you shouldn't have that and appears to be intentionally performing MITM attacks on its users.
Google researchers released a paper that describes how SSLv3 can be compromised to steal sensitive information, pretty much forcing all webservers to only support the newer TLS protocols.
As Windows 10 approaches end of life, Microsoft targets more users with full-screen ads
Windows 11 build 27754 is out with modernized Windows Hello, new taskbar features, more
Windows 11 audio bug blasts users with 100% volume, Microsoft confirms
Microsoft's free Bing Wallpaper app for Windows is borderline malware
Recommended by 
We're on Mastodon!
We're on Mastodon!