Dataproof Communications

CVSSv3 Score: 4.1 An externally controlled reference to a resource in another sphere vulnerability in multiple products may allow an unauthenticated attacker to poison web caches between the device and the attacker via crafted HTTP requests, where the Host header points to an arbitrary webserver. Revised on 2026-01-07 00:00:00 - Read more

How expired domains and improper DNS management can lead to severe security risks like MitM attacks, fraudulent TLS/SSL certifications, and more. - Read more

We are excited to announce a new extension to Let’s Encrypt’s implementation of the ACME protocol that we are calling “profile selection.” This new feature will allow site operators and ACME clients to opt in to the next evolution of Let’s Encrypt. As of today, the staging environment is advertising a new field in its directory resource: GET /directory HTTP/1.1 HTTP/1.1 200...

Earlier this year we announced our intent to provide certificate revocation information exclusively via Certificate Revocation Lists (CRLs), ending support for providing certificate revocation information via the Online Certificate Status Protocol (OCSP). Today we are providing a timeline for ending OCSP services: January 30, 2025 OCSP Must-Staple requests will fail, unless the requesting account has previously issued a certificate containing the...

Elastic Security combines CDR with SIEM to deliver crucial context, prioritized threat detection, and rapid response for a more efficient security posture. - Read more

What can last year’s Black Friday shopping trends teach us about expected attacker behavior during the 2024 holiday shopping season? - Read more

Elastic 8.16 includes many high-impact capabilities, including Elastic being the first vector database with BBQ (Better Binary Quantization), LLM observability for Amazon Bedrock, extended cloud security provider integrations, and more. - Read more

Learn how to set up Elastic AI Assistant with a locally hosted Meta Llama 3.1 model with LM Studio. - Read more

Turning data into actionable insights allows a company to understand what drives its business and scale more efficiently. Here's how to do that. - Read more

Join Jake Haldeman & Gabrielle Hempel for episode 9 of “The Cybersecurity Brew,” a podcast-style webinar series providing expert advice on navigating the ever-changing threat landscape. During this series, our hosts share their thoughts around the latest and most significant cybersecurity headlines that impact you and answer your most pressing questions to help you defend and protect your environment....