The Last HITB Security Conference in Malaysia

Hands-on Technical Trainings - 13th & 14th October

http://conference.hitb.org/hitbsecconf2014kul/#tile_schedule

Triple-Track Conference - 15th & 16th October

http://conference.hitb.org/hitbsecconf2014kul/conference-speakers/

 

Capture the Flag - 15th & 16th October

http://conference.hitb.org/hitbsecconf2014kul/capture-the-flag/

HackWEEKDAY - 15th & 16th October

http://conference.hitb.org/hitbsecconf2014kul/hackweekday/

CommSec Village - 15th & 16th October

http://conference.hitb.org/hitbsecconf2014kul/commsec-village/

REGISTER ONLINE NOW

Akamai's HTTPS fail sets a bad example

http://en.wikipedia.org/wiki/Akamai_Technologies

"If your firm uses Akamai, know that they can't even be bothered to install a valid HTTPS cert for their own website," tweeted Christopher Soghoian, a technologist whose day job is with the American Civil Liberties Union (ACLU), on Tuesday. He's referring to the digital certificate, which, if it were valid, would confirm when you make an encrypted connection to the website that it's actually connecting to the right place — as opposed to being intercepted by an impostor.

Except it isn't, so it doesn't.

Soghoian is also clearly unimpressed with Akamai's response. Apparently, the certificate has been dodgy for months, and it has been told about it several times. "Thanks for noting, Chris. It's something we're actively addressing. Hope you'll let your followers know that, as well," tweeted Jamie Pappas, a social media consultant who's working with Akamai.