Home > Webmaster News > Internet News > Welcome FREAK – Yet Another OpenSSL Vulnerability

Welcome FREAK – Yet Another OpenSSL Vulnerability

It seems like every few months a new SSL vulnerability is pointed out – which I suppose makes sense with the recent popularity that SSL has gotten. Thanks Google. Alas let’s welcome FREAK – a new man-in-the-middle vulnerability discovered by a group of cryptographers at INRIA, Microsoft Research and IMDEA.

FREAK stands for “Factoring RSA-EXPORT Keys” which currently affects OpenSSL, Apple’s Secure Transport and Windows Secure Channel clients only. Basically users of Android mobiles, Apple Macs, iPhones and iPads, and Windows platforms are the ones really impacted. Red Hat servers seem to be good to go as none of them utilize the affected version of OpenSSL which hasn’t been patched already.

Webmasters & server techs take note – OpenSSL released a patched version on the 19th which you should update your servers to if you’re utilizing an affected OpenSSL version.

About Michael Boguslavskiy

Michael Boguslavskiy is a full-stack developer & online presence consultant based out of New York City. He's been offering freelance marketing & development services for over a decade. He currently manages Rapid Purple - and online webmaster resources center; and Media Explode - a full service marketing agency.

Check Also

When Disaster Strikes: Reviewing AWS vs Azure Disaster Recovery Solutions

Disaster recovery, in the context of IT, refers to the implementation of specific tools, policies, ...

Like every other website, this site uses cookies to analyze our traffic. Cookies may also be utilized by our advertisers and partners. By using this website you agree to the use of said cookies. More Information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings, continuing to navigate past this message, or you click "Accept" below then you are consenting to the use of cookies on the Rapid Purple website.