December 18th, 2011 
Mourad Ben Lakhoua Cisco 2011 Annual Security Report Cisco Security report for this year comes to highlight most important security threats, the good news in this report is the dramatic decline for spam volume but criminals are now using small botnet that are difficult to track and they focus more on bank attacks using Zeus toolkit (Zbot), in [...]
Posted in From the Web 
Tags: Anonymous, Apple, Cisco 2011 Annual Security Report, Infosec, Infosec News, LulzSec, SSL 
No Comments » August 23rd, 2011 Mourad Ben Lakhoua One of main problem in HTTP protocol is encrypting traffic and verifying data security, securing the web application against any threat is very important especially that if hackers conduct a Man-in the middle attack he can get all users information while data are transferred in a clear text form. HTTPS is a combination of the [...]
October 17th, 2009 Mourad Ben Lakhoua Moxie Marlinspike demonstrated another way to compromise SSL based website at the BlackHat DC 2009,which is the HTTPS stripping tool called SSLStrip. For example if we are looking to check our email on Gmail, we open our browser and we start typing the address: mail.google.com or gmail.com, and we don’t care about the page if [...]
Posted in Vulnerabilities & attacks, Web Security Tags: BlackHat, Digital security, SSL, SSLStrip 10 Comments » October 4th, 2009 Mourad Ben Lakhoua It has been now Nine weeks since Moxie Marlinspike demonstrated the “new” way of attacking SSL at the Black Hat security conference by the help of his tool, called SSLstrip he was able to make a man-in-the-middle attack on normal, insecure http traffic and replaces links to secure https pages with normal http, so after [...]
Posted in News, Vulnerabilities & attacks, Web Security Tags: Firefox, Google chrome, Internet Explorer, Safari, SSL 12 Comments »
