News

Platform certificates used by Android smartphone vendors like Samsung, LG, and MediaTek have been found to be abused to sign malicious apps.

Every major IT or digital initiative results in increasing interactions between people, applications and processes, creating large numbers of digital identities. If these digital identities go unmanaged and unsecured, they can represent significant cybersecurity risk: Sixty-eight percent of non-humans or bots have access to sensitive data and assets. The average staff member has greater than 30 digital identities.1 Machine identities now outweigh human identities by a factor of 45x on average. Eighty-seven percent store secrets in multiple places across DevOps environments, while 80% say developers typically have more privileges than necessary for their roles. Read more here : CyberArk Report: Massive...

As we released our initial offering of version 1.0 Certificate Lifecycle Management in late July 2022, we are continuing to extend our offering with new features coming up later this year with 2.0 version upgrade.Our version has been upgraded a few times to 1.1.1 which has a few new features as well as a few minor bugs fixed. Our next version comes with ACME compatible certificate renewal, initially in Azure Web App platform, which is to be extended further in future.More features to come up in later releases are SMS alerting, more scheduling options and flavors of subscription allows our...

Let’s Encrypt is turning on new infrastructure to support revoking certificates via Certificate Revocation Lists. Despite having been largely supplanted by the Online Certificate Status Protocol for over a decade now, CRLs are gaining new life with recent browser updates. By collecting and summarizing CRLs for their users, browsers are making reliable revocation of certificates a reality, improving both security and privacy on the web.

Our issue related timing our requests to endpoints has been resolved