Google Chrome to Distrust Chunghwa & Netlock Certificates: How Qualys Certificate View Helps You Respond

In a major change to the global certificate ecosystem, Google Chrome has announced that it will no longer trust any new digital certificates issued by Chunghwa Telecom and Netlock, two long-standing Certificate Authorities CAs, after July 31, 2025. This move is part of Chrome’s ongoing efforts to...

Google Chrome to Distrust Two Certificate Authorities Over Compliance and Conduct Issues

Google has revealed that it will no longer trust digital certificates issued by Chunghwa Telecom and Netlock citing "patterns of concerning behavior observed over the past year." The changes are expected to be introduced in Chrome 139, which is scheduled for public release in early August 2025. T...

Adaptive and Efficient Dynamic Memory Management for Hardware Enclaves

The second version of Intel Software Guard Extensions Intel SGX, or SGX2, adds dynamic management of enclave memory and threads. The first version required the address space and thread counts to be fixed before execution. The Enclave Dynamic Memory Management EDMM feature of SGX2 has the potentia...

SUSE-SU-2025:20336-1 Security update for ca-certificates-mozilla

This update for ca-certificates-mozilla fixes the following issues: - test for a concretely missing certificate rather than just the directory, as the latter is now also provided by openssl-3 - Re-create java-cacerts with SOURCEDATEEPOCH set for reproducible builds bsc1229003 - explicit remove...

Security update for mozilla-nss

This update for mozilla-nss fixes the following issues: update to NSS 3.101.2 ChaChaXor to return after the function update to NSS 3.101.1 missing sqlite header. GLOBALTRUST 2020: Set Distrust After for TLS and S/MIME. update to NSS 3.101 add diagnostic assertions for SFTKObject refcount. freeing...

openSUSE Security Advisory (SUSE-SU-2024:2869-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2024-41007 · Mozilla · Ca-Certificates-Mozilla

Name of the Vulnerable Software and Affected Versions: ca-certificates-mozilla affected versions not specified Description: The update for ca-certificates-mozilla fixes issues related to the Mozilla SSL root CAs. It updates to the 2.68 state of Mozilla SSL root CAs and adds new root certificates,...

Chrome to Distrust Entrust Certificates by November 2024

From Entrust to Distrust!...

The ownership context is too centralized leaving room for other attack surfaces

Lines of code Vulnerability details Impact The ownership context is too centralized leaving room for other attack surfaces and leaving impression of distrust for the participants. Proof of Concept Almost all of the functions have onlyOwner modifier which allows accessing all the vital points of t...

SUSE-SU-2021:4154-1 Security update for p11-kit

This update for p11-kit fixes the following issues: - CVE-2020-29361: Fixed multiple integer overflows in rpc code bsc1180064 - Add support for CKANSSSERVER,EMAILDISTRUSTAFTER bsc1187993...

OPENSUSE-SU-2021:4154-1 Security update for p11-kit

This update for p11-kit fixes the following issues: - CVE-2020-29361: Fixed multiple integer overflows in rpc code bsc1180064 - Add support for CKANSSSERVER,EMAILDISTRUSTAFTER bsc1187993...

What the Pentagon’s New UFO Report Reveals About Humankind

The document says less about the search for life in the universe, and more about our current cultural climate and distrust of expertise...

Americans Concerned and Confused Over Privacy, Survey Reveals

Call it a case of Facebook privacy breach fatigue. When asked, Americans say companies do a worse job than the government when it comes to protecting data collected on their behalf. They also complain potential risks they face because of data collection by companies outweigh the benefits. The...

Labs survey finds privacy concerns, distrust of social media rampant with all age groups

Before Cambridge Analytica made Facebook an unwilling accomplice to a scandal by appropriating and misusing more than 50 million users’ data, the public was already living in relative unease over the privacy of their information online. The Cambridge Analytica incident, along with other, seemingl...

Lenovo Replacing Distrusted GeoTrust Certificates With New DigiCert Certificates - US

Lenovo Security Advisory: LEN-24497 Scope of Impact: Industry-wide. Anyone using a GeoTrust certificate will need to update to DigiCert. Major browsers will stop trusting GeoTrust certificates as early as October. Summary Description: Many Lenovo sites use PKI certificates issued by the GeoTrust...

Lenovo Replacing Distrusted GeoTrust Certificates With New DigiCert Certificates - Lenovo Support US

No description provided...

ISO Rejects NSA Encryption Algorithms

The ISO has decided not to approve two NSA-designed block encryption algorithms: Speck and Simon. It's because the NSA is not trusted to put security ahead of surveillance: A number of them voiced their distrust in emails to one another, seen by Reuters, and in written comments that are part of t...

Google to Fully Distrust WoSign/StartCom SSL Certs in Chrome 61

Websites that are still using digital certificates issued by Chinese Certificate Authority WoSign may want to accelerate their plans to replace those certs. Google last week said it will fully distrust remaining certificates issued by the CA starting with Chrome 61. Devon O’Brien of the Chrome...

NukeBot Banking Trojan Source Code Leaked Online by Author

The author behind NukeBot, a modular banking Trojan, released source code for the malware earlier this month in an apparent effort to regain the trust of the cybercrime community. Gosya, NukeBot’s creator, posted a GitHub link to the malware, calling it a “zeus-like banking trojan,” on several...

Google to Distrust WoSign, StartCom Certs in 2017

Google announced Monday that when it ships Chrome 56 in January 2017 the browser will distrust certificates issued by Chinese certificate authoritiesWoSign and StartCom that have made headlines over the past month. The move was somewhat expected after Mozilla announced last week the company would...