{"id":329,"date":"2016-01-09T21:33:03","date_gmt":"2016-01-10T04:33:03","guid":{"rendered":"http:\/\/dshsolutions.com\/wordpress\/?p=329"},"modified":"2016-01-09T21:33:03","modified_gmt":"2016-01-10T04:33:03","slug":"hackers-install-free-ssl-certs-from-lets-encrypt-on-malicious-web-sites","status":"publish","type":"post","link":"https:\/\/dshsolutions.com\/wordpress\/hackers-install-free-ssl-certs-from-lets-encrypt-on-malicious-web-sites\/","title":{"rendered":"Hackers Install Free SSL Certs from Let&#8217;s Encrypt On Malicious Web Sites"},"content":{"rendered":"<h1>Criminals are abusing Let&#8217;s Encrypt Certificates<\/h1>\n<h2>TLDR<\/h2>\n<h3>How can You Prevent Yourself From Such Attacks?<\/h3>\n<blockquote><p>\nTrend Micro has reached out to both the Let&#8217;s Encrypt project, and the legitimate domain&#8217;s owner to notify them about the malvertising campaign.<br \/>\n<strong>And Here&#8217;s your take:<\/strong><\/p>\n<ul>\n<li>Users should be aware that a &#8216;secure&#8217; website is not always or necessarily a safe website, and the best defense against exploit kits is still an easy go, i.e.:<\/li>\n<li>Always keep your software up-to-date to minimize the number of vulnerabilities that may be exploited by cyber criminals.<\/li>\n<li>For online advertisement brokers, an approach would be to implement internal controls to stop malicious advertisements.<\/li>\n<\/ul>\n<\/blockquote>\n<p>Source:  <a href=\"https:\/\/thehackernews.com\/2016\/01\/free-ssl-certificate-malware.html\" target=\"_blank\" rel=\"noopener\"><em>Hackers Install Free SSL Certs from Let&#8217;s Encrypt On Malicious Web Sites | The Hacker News<\/em><\/a><\/p>\n<p><a href=\"https:\/\/thehackernews.com\/2016\/01\/free-ssl-certificate-malware.html\" target=\"_blank\" rel=\"noopener\">Read the entire article<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Criminals are abusing Let&#8217;s Encrypt Certificates TLDR How can You Prevent Yourself From Such Attacks? Trend Micro has reached out to both the Let&#8217;s Encrypt project, and the legitimate domain&#8217;s owner to notify them about the malvertising campaign. And Here&#8217;s your take: Users should be aware that a &#8216;secure&#8217; website is not always or necessarily [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,5],"tags":[],"class_list":["post-329","post","type-post","status-publish","format-standard","hentry","category-general-and-non-specific-topics","category-security-2"],"_links":{"self":[{"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/posts\/329","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/comments?post=329"}],"version-history":[{"count":0,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/posts\/329\/revisions"}],"wp:attachment":[{"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/media?parent=329"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/categories?post=329"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dshsolutions.com\/wordpress\/wp-json\/wp\/v2\/tags?post=329"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}