•   22 September 2011 2:41 am
  •  

According to a recent whitepaper published here :
http://www.theregister.co.uk/2011/09...ts_paypal_ssl/

As mentioned :

Quote:
"The vulnerability resides in versions 1.0 and earlier of TLS, or transport layer security, the successor to the secure sockets layer technology that serves as the internet's foundation of trust. Although versions 1.1 and 1.2 of TLS aren't susceptible, they remain almost entirely unsupported in browsers and websites alike, making encrypted transactions on PayPal, GMail, and just about every other website vulnerable to eavesdropping by hackers who are able to control the connection between the end user and the website he's visiting."

This is mainly a browser side hack so please open your browser(s) settings and remove the support for TLSv1.0 in encryption/advanced tab.

Comments

  Add Comment

Confirm Submission

Please enter the text from the image in the box provided; this helps us to prevent spam.