Critical Drupal 7 Security Flaw

  • 30th October 2014
A critical security advisory for users of the Drupal 7 CMS software was released on October 15th, 2014.  This is a severe SQL injection based security flaw that affects all Drupal 7 installations.  Drupal maintainers issued the following public service announcement regarding the security flaw, and we urge you to read and take the appropriate ...
Continue reading

POODLE Attack Vector - Addressed

  • 15th October 2014
POODLE stands for Padding Oracle On Downgraded Legacy Encryption. It’s an exploit that takes advantage of inherent weaknesses in the SSLv3 protocol.  TLS, a more modern form of securing websites and email, is the standard supported by most web browsers and servers today, however, it also allows encryption to 'fall back' to the insecure SSLv3 ...
Continue reading