Millions at risk from ‘Freak’ encryption bug

  • March 20, 2015

Microsoft said it was working on a secure update to close the Freak loophole

Microsoft has issued a security warning about a bug that could let attackers spy on supposedly secure communications.

Called “Freak“, the bug was found in software used to encrypt data passing between web servers and web users.

Initially the flaw was thought only to affect some users of Android and Blackberry phones and Apple’s Safari web browser.

Microsoft’s warning suggests millions more may be at risk of losing data.

The Freak flaw was discovered by encryption and security expert Karthikeyan Bhargavan and lets attackers force data travelling between a vulnerable site and a visitor to use weak encryption. This makes it easier to crack open the data and steal sensitive information.

Statistics gathered by a group set up to monitor the impact of the Freak flaw suggest about 9.5% of the web’s top one million websites are susceptible to such attacks.

The monitoring group has also produced an online tool that lets people check if they are using a browser that is vulnerable to the flaw.

encrypted-800

Vulnerable
Apple is expected to produce a patch for the flaw next week and Google has updated its version of Chrome for the Mac to remove its susceptibility to Freak. It has yet to say what action it is taking with Android.

In a security advisory note released on 5 March, Microsoft said every current version of Windows that uses Internet Explorer, or any non-Microsoft software that calls on a part of Windows called Secure Channel, was vulnerable to the Freak flaw.

Microsoft has issued advice about ways to remove the vulnerability from some of its software but said applying these fixes could cause “serious problems” with other programs. It said it was working on a separate security update to remove the vulnerability.

In its advisory, Microsoft said it had not received any information that suggested the attack was being actively exploited by cybercriminals.

You Will Never Get Old Thanks To This Natural Elixir

Ingredients needed: – 10 cloves of garlic – Juice of 10 lemons – 1 kg of organic honey Method of preparation: Chop the cloves of garlic into small pieces and…
Continue reading

Why is Fructose Bad For You? The Bitter Truth

Sugar (sucrose) and High Fructose Corn Syrup both supply a significant portion of the total calories in a standard western diet. They both consist of two simple sugars… glucose and…
Continue reading

How To Make Homemade Fresh Mozzarella

Knowing how to make your own mozzarella is a dangerous thing. A fun, easy, and above all, tasty dangerous thing. Knowing how to make your own mozzarella is a dangerous…
Continue reading

Uses And Health Benefits Of Rosemary

Rosemary Benefits Rosemary was originally cultivated on the shores of the Mediterranean. In fact, the herb's Latin name, rosmarinus, is derived from the words "ros", which is translated to dew,…
Continue reading

8 Health Benefits of Drinking Lemon Water

I use a lot of lemon in salad dressing or tea, but simply drinking warm water with lemon is not something I do regularly. But after finding out all the…
Continue reading

8 things to do before launching a business this year

Thinking about starting a business this year? Most likely you already know that you need to build out your product, service, website, but what about everything else? A booming business…
Continue reading

The Recipe That Pissed Off The Pharmaceutical Industry

The recipe we are about to present is consisted of two very powerful ingredients – cinnamon and honey. It can make wonders for your health even though it is not…
Continue reading

Is Search Engine Submission Necessary?

The simple answer is no - search engine submission isn’t necessary. The majority of search engines nowadays (most notably Google) crawl and index pages by following links. Using that logic, a single…
Continue reading

CEO & founder of CNet Marketing, and is also the founder of a very successful international web hosting company "www.BabilooHost.com" has 14 years of experience in web services industry, a Leading Fully Managed Email Maketing Solutions "www.inteliMails.com" and Online Marketing Agency "www.CNetMarketing.com".

About us

We are dedicated people aiming to deliver important and valuable information and posts gathered from many sources around the web.