๐ New TLS Attack Lets Attackers Launch Cross-Protocol Attacks Against Secure Sites
๐ก Newskategorie: IT Security Nachrichten
๐ Quelle: feedproxy.google.com
Researchers have disclosed a new type of attack that exploits misconfigurations in transport layer security (TLS) servers to redirect HTTPS traffic from a victim's web browser to a different TLS service endpoint located on another IP address to steal sensitive information. The attacks have been dubbedย ALPACA, short for "Application Layer Protocol Confusion - Analyzing and mitigating Cracks in ...