Entrust Identity On Blog
If you thought hackers were just going to let this influx of in-store shopping go to waste, think again. According to Tom's Guide, a new and virulent strain of point of sale malware is circulating that could put a big damper on the holiday shopping spirit. It's called LusyPOS.
The POODLE attack on SSL 3.0 has now been extended to some implementations of TLS. POODLE for TLS can be tracked through CVE-2014-8730. Adam Langley states that “TLS’s padding is a subset of SSLv3’s padding so, technically, you could use an SSLv3 decoding function with TLS and it would still work fine. It wouldn’t check the padding bytes but that wouldn’t cause