As more of the internet adopts HTTPS everywhere to secure communications, enterprises rely on inspection tools to examine encrypted traffic to make sure it doesn’t contain malicious activity. Unfortunately, the devices intended to verify the security of networking communications appear to be undermining HTTPS, US-CERT warned.

“All systems behind a HTTPS interception product are potentially affected,” the Department of Homeland Security’s United States Computer Emergency Response Team wrote in its advisory.

To read this article in full or to leave a comment, please click here

Source: Security