Entrust Identity On Blog
The POODLE attack on SSL 3.0 has now been extended to some implementations of TLS. POODLE for TLS can be tracked through CVE-2014-8730. Adam Langley states that “TLS’s padding is a subset of SSLv3’s padding so, technically, you could use an SSLv3 decoding function with TLS and it would still work fine. It wouldn’t check the padding bytes but that wouldn’t cause
These days, cybercriminals seem to always have the upper hand and never make any missteps. But fortunately that's not always the case, and even the most skilled cybercriminal out there is apt to make the occasional error. That's what happened with Jeremy Hammond, a man who's now in prison.