Warning: unlink(/tmp/jnewslibrary-pSDsV3.tmp): No such file or directory in /home/customer/www/coinparative.com/public_html/wp-admin/includes/class-wp-filesystem-ftpext.php on line 142
Poodle Attack: Hackers Could Exploit SSL 3.0 Bug | Coinparative
Coinparative

  • News
    • Crypto News
    • Blockchain News
    • Altcoin News
    • Press Release
    • NFT News
    • Metaverse
    • Web3.0 News
    • Trending
  • Insights
    • Explainer
    • Research
  • Guides
  • Market
    • Market analysis
    • Market News
    • Reviews
    • Price Index
  • Videos 🚀
No Result
View All Result
  • About Us
  • Contact
  • jeet-detector-bot
    JDB(JDB)
    $0.00-0.61%
  • bitcoin
    Bitcoin(BTC)
    $0.00-1.60%
  • ethereum
    Ethereum(ETH)
    $0.00-2.47%
  • usdex-stablecoin
    USDEX(USDEX)
    $0.00-0.53%
  • tether
    Tether(USDT)
    $0.000.020%
  • binancecoin
    BNB(BNB)
    $0.00-1.32%
  • usd-coin
    USD Coin(USDC)
    $0.00-0.07%
  • ripple
    XRP(XRP)
    $0.00-3.35%
  • binance-usd
    Binance USD(BUSD)
    $0.00-0.15%
  • cardano
    Cardano(ADA)
    $0.00-3.50%
  • dogecoin
    Dogecoin(DOGE)
    $0.00-5.56%
  • matic-network
    Polygon(MATIC)
    $0.00-4.94%
  • okb
    OKB(OKB)
    $0.005.01%
  • solana
    Solana(SOL)
    $0.00-4.44%
  • shiba-inu
    Shiba Inu(SHIB)
    $0.00-6.10%
  • staked-ether
    Lido Staked Ether(STETH)
    $0.00-2.44%
  • polkadot
    Polkadot(DOT)
    $0.00-4.33%
  • litecoin
    Litecoin(LTC)
    $0.00-2.91%
  • avalanche-2
    Avalanche(AVAX)
    $0.00-5.11%
  • tron
    TRON(TRX)
    $0.000.350%
View All
Coinparative
Home Web3.0 News

Poodle Attack: Hackers Could Exploit SSL 3.0 Bug

April 2, 2022
in Web3.0 News
235 17
A A
0
Poodle Attack: Hackers Could Exploit SSL 3.0 Bug
Share on FacebookShare on Twitter

Three Google Inc researchers have uncovered a security bug in widely used web encryption technology that they say could allow hackers to steal data in what they have dubbed a “Poodle” attack.

“Poodle” stands for Padding Oracle On Downloaded Legacy Encryption.

The problem is an 18-year old encryption standard, known as SSL 3.0, which is still widely used in web browsers and websites. It was disclosed in a research paper published late on Tuesday on the website of the OpenSSL Project, a group that develops the most widely used type of SSL encryption software.

Rumors that a new bug in OpenSSL software had been circulating on Twitter and technology news sites in recent days, prompting some corporate security professionals to prepare to respond to a major new threat this week.

So far this year, they have responded to April’s “Heartbleed” bug in OpenSSL, which affected an estimated two-thirds of all websites and thousands of other technology products, as well as last month’s “Shellshock” bug in a piece of Unix software known as Bash.

But security experts said that the bug disclosed on Tuesday, which could allow hackers to steal browser “cookies,” was not as serious as the two prior bugs.

“It’s quite complicated. It requires the attacker to have a privileged position in the network,” said Ivan Ristic, director of application security research with Qualys and an expert in SSL.

Jeff Moss, founder of the Def Con hacking conference and an advisor to the U.S. Department of Homeland Security, said that successful attackers could exploit the bug to steal session cookies in browsers, taking control of accounts for email providers, social networks and banks that use that technology.

To do that, however, they would need to launch a “man-in-the-middle” attack, placing themselves in between the victim and the websites they were visiting. One common approach is to create a rogue Wi-Fi “hot spot” in an Internet cafe, he said.

Matthew Green, assistant research professor at Johns Hopkins University’s department of computer science, said this vulnerability was not as bad as either Heartbleed, which allowed hackers to snoop or steal large quantities of data, or Shellshock, which could give attackers remote control of computers.

He advised businesses and computer uses to disable SSL 3.0 technology on their servers and browsers, a process that he said can be difficult for the average computer user.

“It’s not going to take out the infrastructure of the Internet. But it’s going to be a hassle to fix,” he said.

© Thomson Reuters 2014

Source: NDTV

Tags: poodle attack hackers could exploit ssl 3.0 bug internet
Share196Tweet123Share34Pin44ShareSend

Related Articles

IBM’s Dr. Agata Slater: ‘BSV and the whole ecosystem is a very good fit for enterprises’
Web3.0 News

IBM’s Dr. Agata Slater: ‘BSV and the whole ecosystem is a very good fit for enterprises’

February 1, 2023
1.4k
Retail giant Amazon plans new NFT initiatives: report
Web3.0 News

Retail giant Amazon plans new NFT initiatives: report

February 1, 2023
1.4k
Gate2Chain Blockchain, Tourism and the Future of the Internet Conference highlights
Web3.0 News

Gate2Chain Blockchain, Tourism and the Future of the Internet Conference highlights

January 27, 2023
1.4k
When it comes to digital assets, is the Philippines Bull or Bear? The first PH Web3 Debate highlights
Web3.0 News

When it comes to digital assets, is the Philippines Bull or Bear? The first PH Web3 Debate highlights

January 20, 2023
1.4k
UAE VC firms launch joint fund for Web3 ecosystem worth $1 billion
Web3.0 News

UAE VC firms launch joint fund for Web3 ecosystem worth $1 billion

January 16, 2023
1.4k
Animoca Brands slashes anticipated Web3 fund to $1 billion: report
Web3.0 News

Animoca Brands slashes anticipated Web3 fund to $1 billion: report

January 12, 2023
1.4k
Load More

Discussion about this post

Coinparative

2022 © All Rights Reserved.

Coinparative specializes in the digital News and research on cryptocurrency, Digital Assets and Blockchain

  • Advertise
  • Privacy Policy
  • Terms
  • About Us
  • Contact

Follow Us

No Result
View All Result
  • News
    • Crypto News
    • Blockchain News
    • Altcoin News
    • Press Release
    • NFT News
    • Metaverse
    • Web3.0 News
    • Trending
  • Insights
    • Explainer
    • Research
  • Guides
  • Market
    • Market analysis
    • Market News
    • Reviews
    • Price Index
  • Videos 🚀

2022 © All Rights Reserved.

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
DON’T MISS OUT!
Subscribe To Newsletter
Be the first to get latest updates and exclusive content straight to your email inbox.
Stay Updated
Give it a try, you can unsubscribe anytime.
close-link
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.

Warning: unlink(/tmp/jnewsfirstload-MbXYZN.tmp): No such file or directory in /home/customer/www/coinparative.com/public_html/wp-admin/includes/class-wp-filesystem-ftpext.php on line 142