The FREAK Flaw: What You Need to Know.


Another security flaw was discovered that jeopardizes encrypted web connections.

On Tuesday, March 3, 2015, researchers announced a new SSL/TLS vulnerability called the FREAK attack. It allows an attacker to intercept HTTPS connections between vulnerable clients and servers and force them to use weakened encryption, which the attacker can break to steal or manipulate sensitive data.

We have already upgraded our server TLS libraries and patched the vulnerability. Are you safe from the FREAK attack?