On 11th May 2020, an automated AWS email sent to SSL247 was received by our Dev team. It reported a misconfiguration with an Amazon Web Services S3 bucket. Our engineering team assessed and corrected the misconfiguration within minutes.

We subsequently learned that review site vpnMentor had originally brought this to Amazon’s attention, prompting their outreach to SSL247.

From September 1st, 2020, Apple's Safari will only trust certificates with a validity of 398 days or less. Find out more.

On Friday, December 14, the SSL247 Lab team, our expert and CREST Registered Testers (CRTs), will be travelling to Sophia Antipolis in the south of France to participate in quite a unique event.

Comodo CA has decided to re-establish their brand and forge a new identity as Sectigo.

Tijdens de DigiCert Partner Roundtable voor 2018, het exclusieve evenement voor de toppartners van DigiCert, heeft SSL247^® voor de derde keer de EMEA Champion-prijs gekregen.

While last weekend was not particularly busy in terms of Infosec news, one thing that stood out was the identification and implementation of a new WPA attack.
The purpose of this blog article is to help you identify how your wireless infrastructure (personal or business) is affected by explaining the differences between existing attacks and this new attack.

Beginning August 1, 2018, all Certification Authorities (CAs) will be required to modify domain ownership validation methods in order to comply with Ballot 218 and baseline requirements of the CA/Browser Forum (CA/B Forum).

Google is taking the next step in keeping Chrome users safe by marking all HTTP pages as not secure from the release of Chrome 68 in July 2018.
Are you SSL-ready or will your potential and existing customers be told that your website is not secure?

DigiCert recently announced that they are updating the Online Certificate Status Protocol (OCSP) infrastructure for Symantec MPKI 8.

During a webinar that took place last week, Loïc Castel, the head of our Penetration Testing unit, explained the fundamentals of social engineering.

A big thank you to Comodo for sponsoring our Christmas Party at the Gunmakers located in the heart of London, Clerkenwell.

Tijdens de Symantec Platinum Partner Roundtable van dit jaar, een jaarlijks evenement voor de grootste Symantec-partners in de EMEA-regio, is SSL247^® wederom uitgeroepen tot EMEA Symantec Champion.

SSl247® are pleased to announce the opening of our new office in Farringdon!

Met ingang van 8 september 2017 zijn alle certificeringsinstanties (CA’s) verplicht een CAA-verificatie (Certificate Authority Authorisation) uit te voeren.

Google heeft de deadlines voor het niet langer vertrouwen van SSL-certificaten van Symantec, GeoTrust, Thawte en RapidSSL verlengd, nadat DigiCert plannen heeft bekendgemaakt voor het overnemen van de webbeveiliging en de PKI-oplossingen van Symantec.

Google heeft een voorstel ingediend dat inhoudt dat de Google Chrome-webbrowser (versie 62) vanaf augustus 2017 geleidelijk SSL-certificaten gaat wantrouwen die vóór 1 juni 2016 zijn uitgegeven door Symantec, GeoTrust, Thawte of RapidSSL.

Wat is WannaCry ? Zoals u waarschijnlijk wel hebt gehoord, was er onlangs veel te doen over een nieuw ransomwareprogramma, waarvan de schade nog altijd niet te overzien is. Deze gijzelsoftware, WannaCry of WannaCrypt genoemd, probeert de gegevens op uw systemen te versleutelen om vervolgens losgeld te vragen.

The new EU eIDAS regulation that oversees electronic identification and trusted services will be enforced from July 2016.

Policy makers in Brussels have recognised the 1995 ‘General Data Protection Regulation’ (GDPR) is no longer adequate considering the vast amounts of digital information being used worldwide. Despite having just gotten used to July’s revised ‘ePrivacy Directive’ (The cookie law), organisations or businesses that process data relevant to EU based individuals will soon be required to comply with an updated 1995 GDPR regulation – to be enforced from mid-2018.

Certificate Transparency (CT) was a standard introduced in November 2014 by Google.The main objective was to fix different structural flaws in the SSL certificate system which could facilitate a wide range of cyberattacks if left unchecked (e.g. spoofing, Man-In-The-Middle attacks).