Latest Security News about man in the middle

TLS Security

TLS (Transport Layer Security) is the modified  version of SSL, which provides browser security. As with any other protocols TLS is also vulnerable to hacking. Prime issue happens due to mis-configuration of TLS implementation in servers. One typical example is, some servers still support SSL Version 3. On handshake if the target server gets a [...]

LogicalDoc before 8.3.3 allows SQL Injection

  Overview : LogicalDoc before 8.3.3 allows SQL Injection. LogicalDoc populates the list of available documents by querying the database. This list could be filtered by modifying some of the parameters. Some of them are not properly sanitized which could allow an authenticated attacker to perform arbitrary queries to the database. CVE ID :CVE-2020-10365 LogicalDoc [...]

Citrix SD-WAN 10.2.x before 10.2.6 and 11.0.x before 11.0.3 has Missing SSL Certificate Validation

  Overview : Citrix SD-WAN 10.2.x before 10.2.6 and 11.0.x before 11.0.3 has Missing SSL Certificate Validation.An information disclosure vulnerability has been identified in the Citrix SD-WAN Appliance. This vulnerability could allow an unauthenticated attacker to perform a man-in-the-middle attack against management traffic. The vulnerability has been assigned the following CVE number. CVE-2020-6175 – Information Disclosure [...]

Bot Detection

Bot Detection The Problems 20% of all web traffic is bad bots targeting APIs to bypass security controls. Powered with ML, bots evade corporate defenses inflicting damage before security teams can respond. Bots are dynamic and ever mutating, but WAFs are always behind, require prior rules. Security teams are fighting cyberattacks blindfolded, trying to filter [...]

IoT WAF

Securing IoT APIs Prophaze Raspberry PI based custom appliance can be hooked at the gateway of your IoT interface . It can be any control system , let it be CCTV Camera's , or a Advanced Data fetching and parsing device . Prophaze can secure your api end points against OWASP Top 10 and many [...]