Video

Play Video

Podcast

LISTEN ON

Facebook
Twitter
LinkedIn
Email
Skype
WhatsApp
Telegram

Let’s Encrypt Breaks the Internet Millions Loose Access To Websites

Episode 17

One of the largest providers of HTTPS certificates, Let’s Encrypt, saw its root certificate expire this week affecting many of the devices lose the ability to use certificate services Let’s Encrypt, is a free-to-use nonprofit, issues certificates that encrypt the connections between your devices and the wider internet, ensuring that nobody can intercept and steal your data in transit.
Every day Big Tech and Mass Media make it hard to find out what is going on with the internet. Honey Beez and Trip Elix have unique experiences to share in an unpaired podcast experience.

Join our community!!
Subscribe to the Insecurity Brief podcast now on every platform we can find

Follow us on Twitter
@HoneyBeez0x
@trip_elix

 

Washington Examiner
Internet goes down for millions, tech companies scramble as key encryption service expires

The expiration of a key digital encryption service on Thursday sent major tech companies nationwide scrambling to deal with internet outages that affected millions of online users.

https://news.yahoo.com/internet-goes-down-millions-tech-021400230.html

Certificate Compatibility

The main determining factor for whether a platform can validate Let’s Encrypt certificates is whether that platform trusts ISRG’s “ISRG Root X1” certificate. Prior to September 2021, some platforms could validate our certificates even though they don’t include ISRG Root X1, because they trusted IdenTrust’s “DST Root CA X3” certificate. From October 2021 onwards, only those platforms that trust ISRG Root X1 will validate Let’s Encrypt certificates (with the exception of Android).

https://letsencrypt.org/docs/certificate-compatibility/

CISA: Wide Exploitation of New VMware vCenter Server Flaw Likely

Organizations using VMware’s vCenter Server that haven’t yet applied a patch for a recently disclosed arbitrary file upload vulnerability in the management utility (CVE-2021-22005) are at heightened risk of compromise.

https://www.darkreading.com/vulnerabilities-threats/cisa-says-wide-exploitation-likely-of-new-vmware-center-server-flaw

Google pushes emergency update for Chrome zero-days, the latest in a hectic year for vulnerabilities

 

Google Chrome has issued emergency updates for two zero-day flaws that attackers are exploiting, the second pair for the browser in a month.

https://www.cyberscoop.com/google-chrome-zero-days/

Search

Trip's Books

Honey's Books

Subscribe to

insecurity Brief podcast
RadioPublic Podcasts
Pocket Casts Podcasts
Breaker Podcasts
Soundcloud Podcasts
IHeart Podcasts
Rss Feed
Subscribe via Email

About The Hosts

Honey Beez

Honey Beez is a retired computer hacker, chess addict, author, and mother. Honey is an American and a New Yorker.  She has written several Children’s books and chess books as well as creating an American chess opening called The Bee Defense.

Trip Elix

Trip Elix is an author, podcaster and video personality Over the last 30 years, he has worked as a security analyst and privately as a consultant, investigator, forensic technician and a skip tracer. He is the author of three books and gives talks on security and privacy.

You May Also Like

Copy & Paste Exploit
How To Tell If Your Device Has A Virus
Chinese Propaganda Targets Redefining Democracy Uses Bots To Spread Message