TLS 1.0 enabled

Home » blog » TLS 1.0 enabled

Description

The web server supports encryption through TLS 1.0. When aiming for PCI or DSS, it is recommended to use TLS 1.3.

Bussines Impact

An attacker might be able to exploit this vulnerability to conduct MITM attacks and decrypt the traffic between the affected service and clients.

Recommendation

In order to prevent this vulnerability from happening, make sure that you disable TLS 1.0 and replace it with TLS 1.3.

Reference

https://docs.microsoft.com/en-us/security/engineering/solving-tls1-problem

Models – CIA and AAA

The field of information security is based on a number of basic principles that are important for us. Each principle is part of two main

GETting it – POSTing it

No one likes things to get mixed up, creating confusion and misunderstandings, and sometimes even make our arguments seem a bit silly in the heat

Lights, camera, where is the Script? – JavaScript in short

We know HTML is all about editing, CSS is all about designing, what’s left you ask? Well, JavaScript of course! In other words, JS is

Cybersecurity – The thinnest security guards you will ever know

I can sit here all day long talking about vulnerabilities, attackers and other scary ways that puts our money and personal data at risk and

Man-In-The-Middle Attacks

Do you know these people who just push themselves into conversations?That’s Man-In-The-Middle Attacks. And from a wider angle, Man-In-The-Middle Attacks, or MITM, are built around

HTTP VS. HTTPS

You must have once wondered what HTTP means and what is the difference between that ugly word to HTTPS, and if not, then please read

WEB APPLICATION VULNERABILITY SCANNER