The most recent hole in Web Security was discovered when researchers came across FREAK Web Bug. FREAK Vulnerability is the very same vulnerability which puts Apple and even highly secured Google at risk. And to add to this list, even Microsoft warned it’s Window’s Operating System users to be alert since even they are not safe from FREAK Hack.
FREAK, which is called as Factoring RSA Export Keys to be precise is an very old bug and is dated about a decade old. Since it is old, hence, it puts every thing on risk, be it Android, Windows, Apple or even Google.
FREAK bug allows an intruder to hack when a User is surfing supposedly Secured Website over the web. Initially, it was reported that the FREAK Bug Hack was only limited to Apple, Google and Android but now Microsoft acknowledged that it “affects all supported releases of Microsoft Windows.”
“Our investigation has verified that the vulnerability could allow an attacker to force the downgrading of the cipher suites used in an SSL/TLS connection on a Windows client system,” Redmond said. Still, “Microsoft had not received any information to indicate that this issue had been publicly used to attack customers.”
Microsoft is more likely to be ready with the patch for the FREAK Bug and it is expected to be rolled out to the users on the regular Tuesday Update as per CNET. But, till then, all the Windows Users are asked to disable RSA Export Ciphers as a Preventive measure for preventing one from being infected by FREAK Bug. According to the Cryptographers’ Website,”If a server is willing to negotiate an export ciphersuite, a man-in-the-middle may trick a browser (which normally doesn’t allow it) to use a weak export key.”
Have anything to say to this story , Say it in comments ……….