Over half of UK banks have insecure SSL implementations associated with login functions
Xiphos Research co-founder says some of the instances are 'shockingly bad' but that banks aren't interested in mitigating risks

More than half of the UK's retail banks have insecure instances of SSL, which are associated with supposedly "secure" login functions, making it easier for cyber criminals to get their hands on financial...
More on Security
Google revises Disclosure Policy to help improve patch adoption
Google's Project Zero will not share technical details of the bug for 30 days if a vendor fixes the vulnerability within a 90-day deadline
US sanctions six tech firms for supporting Russian intelligence services
Named firms are Positive Technologies, ERA Technopolis, Neobit, Advanced System Technology (AST), Pasit and SVA
US government to announce Russian sanctions in response to cyber attacks
The sanctions will target Russian diplomats in the USA, as well as threatening the country's wider economy by banning the purchase of ruble bonds
Microsoft patches five zero-day bugs in April 2021 Patch Tuesday update
In total, 110 bugs have been fixed
Data protection has never been a hotter topic, and that's good news for every organisation
Data protection is evolving into data management
Back to Top