Home > Webmaster News > Internet News > 1 in 5 Websites Still Using Vulnerable SHA-1 SSL Certificates

1 in 5 Websites Still Using Vulnerable SHA-1 SSL Certificates

A new cyber security report from Venafi has revealed that over 21% of all websites are still currently using an insecure SSL certificate. SHA-1 certificates were exposed to be vulnerable for man-in-the-middle attacks, collision attacks, and brute force attacks. Remember Heartbleed?

The results of our most recent analysis are not surprising,” said Kevin Bocek, chief security strategist for Venafi. “Even though most organizations have worked hard to migrate away from SHA-1, they don’t have the visibility and automation necessary to complete the transition. We’ve seen this problem before when organizations had a difficult time making coordinated changes to keys and certificates in response to Heartbleed, and unfortunately I’m sure we are going to see it again.

Venafi ran their test in February 2017, analyzing 33 million publicly visible IPv4 websites using certificate intelligence service Venafi TrustNet. Over one in five certificates for unique IP addresses were using SHA-1 at the time of the test. A rather surprising number considering how widespread the news regarding Heartbleed was.

Regardless if you are using SSL certificates across your website make sure you’re utilizing the latest SHA-2 algorithm.

 

About Michael Boguslavskiy

Michael Boguslavskiy is a full-stack developer & online presence consultant based out of New York City. He's been offering freelance marketing & development services for over a decade. He currently manages Rapid Purple - and online webmaster resources center; and Media Explode - a full service marketing agency.

Check Also

Infographic: Lesser Known Facts About Domain Names, Hosting & The Internet

Did you know that emails have technically been around since 1962? Or that info.cern.ch was ...

Like every other website, this site uses cookies to deliver to analyze our traffic. Cookies may also be utilized by our advertisers and partners. By using this website you agree to the use of said cookies. More Information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings, continuing to navigate past this message, or you click "Accept" below then you are consenting to the use of cookies on the Rapid Purple website.

Close