Recently researches were able to find a loop hole in SSL certificate implementation which could could make any secure website (relying on md5 hashing of CA certificates) vulnerable to nearly undetectable phishing attack.
To brief the attack:
Cryptography, Cybercrime, Information Security, Network Security, Phishing | w0lf | January 1, 2009 | 
Comments (2)
Cryptography, Encryption, netbanking, phishing, PKI, spoofing, SSL certificates
Just happened to come across this interesting article (PDF Format) discussing how in today’s world, we (BANK preferably) need to continue business with customers even though their systems are infected with different malwares. This paper discusses many of the best practices businesses can adopt for their Web application design and back-office support processes in order to minimize this growing threat, along with helping to reduce several of the risks posed with continuing to do business customers likely to be operating infected computers.
Evil particles, Information Security | w0lf | November 4, 2008 | Comments (0)
