home.social

#downgradeattack — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #downgradeattack, aggregated by home.social.

  1. Microsoft Entra ID's secure login just got a wake-up call. Hackers are manipulating FIDO's fallback system to slip in through legacy protocols—reminding us that even cutting-edge security can have hidden weak spots. What does this mean for your digital safety?

    thedefendopsdiaries.com/emergi

    #fidoauthentication
    #microsoftentra
    #cybersecurity
    #downgradeattack
    #legacyprotocols

  2. Microsoft Entra ID's secure login just got a wake-up call. Hackers are manipulating FIDO's fallback system to slip in through legacy protocols—reminding us that even cutting-edge security can have hidden weak spots. What does this mean for your digital safety?

    thedefendopsdiaries.com/emergi

    #fidoauthentication
    #microsoftentra
    #cybersecurity
    #downgradeattack
    #legacyprotocols

  3. Microsoft Entra ID's secure login just got a wake-up call. Hackers are manipulating FIDO's fallback system to slip in through legacy protocols—reminding us that even cutting-edge security can have hidden weak spots. What does this mean for your digital safety?

    thedefendopsdiaries.com/emergi

    #fidoauthentication
    #microsoftentra
    #cybersecurity
    #downgradeattack
    #legacyprotocols

  4. Is anyone else getting the 'Secure Site Not Available' screen in #TorBrowser?

    Its been appearing frequently in Tor since about a year ago now, and it tries to downgrade the connection to an #insecure #HTTP request.

    It occurs somewhat randomly.

    Our first thought was some sort of #exitNode TLS #DownGradeAttack, but we have reason to believe that the browser is randomly just trying to force users to downgrade their connection.

    Thoughts?

    #secureSiteNotAvailable #SSL #TLS

  5. FEDI SECURITY ISSUE (please boost)

    When we attempted to access a page at fediverse.party recently, we were served a page with an insecure connection, this is despite using #TorBrowser, which supposedly has #HttpsEverywhere?

    So does anyone know what is going on here? Is fediverse.party susceptible to a #downgradeAttack?

    Please boost so we can get to the bottom of it.