HARICA Won't Revoke Certs for Sanctioned Russian Banks
HARICA refused to revoke TLS certificates it issued to EU-sanctioned banks like Sberbank and VTB, testing sanctions compliance. Here's why it matters to you.
HARICA refused to revoke TLS certificates it issued to EU-sanctioned banks like Sberbank and VTB, testing sanctions compliance. Here's why it matters to you.
Microsoft started blocking TLS 1.0 and 1.1 for POP and IMAP connections to Exchange Online in July 2026. If your email client stopped connecting, here's why.
A recurring Let's Encrypt CA bundle bug broke TLS handshakes on Cloudflare twice in seven days, leaving some sites unreachable. Here's what went wrong.
Microsoft's 2011 Secure Boot certificates start expiring June 24, 2026. Devices that miss the update lose future boot-level security patches. Here's what to check.
DigiCert revoked multipurpose G2 and G3 intermediate CAs on May 15, 2026 to meet Chrome's dedicated TLS hierarchy rules. Check if your certs are affected.
Let's Encrypt stopped all certificate issuance on May 8 after a cross-sign flaw in its new Generation Y root. The postmortem reveals missing EKU fields.
Attackers breached DigiCert's support portal with a disguised .scr file, stole EV code signing certs, and signed Zhong Stealer malware. Here's what happened.
On May 13, 2026, Let's Encrypt will begin issuing 45-day certificates, forcing automation for all users. Here's what you need to do to prepare.
APNIC's April 2026 analysis shows certificate revocation (OCSP/CRL) remains fundamentally broken. Shorter-lived certificates are the real fix — here's why.
Sectigo and DigiCert stop issuing public TLS certs with clientAuth EKU on May 1, 2026. Chrome enforces June 15. Here's how to migrate before your mTLS breaks.
A critical wolfSSL bug (CVE-2026-5194) lets attackers forge TLS certificates accepted by 5 billion devices. wolfSSL 5.9.1 fixes it — here's what to do now.
Experts warn October 1, 2026 could trigger widespread outages as the first 200-day SSL certificates expire. Research shows 40% of enterprises aren't ready.
Chrome and Firefox distrust DigiCert's G1 root CA on April 15, 2026. Azure, Oracle, and others are already migrating. Here's what your organization must do.
Sectigo's signing servers went down on March 22, stalling SSL issuance for Namecheap users. As 200-day certs double renewal demand, CAs face new pressure.
Cisco Duo's CA bundle expires March 31, 2026. Organizations using Duo MFA risk complete authentication lockouts if they don't update their software now.
An expired SSL certificate caused a 13-hour Google Bazel outage in December 2025. With 200-day certs starting March 15, 2026, here's why this matters to you.
Learn how unauthorized SSL certificate issuance for Cloudflare's 1.1.1.1 was detected via SSLboard, highlighting challenges in reporting security vulnerabilities.
Learn how SSLboard powers SSLcalendar with zero false positives, distinguishing used certificates via Certificate Transparency monitoring.
Learn about the deprecation of public TLS client certificates. Chrome stops trusting them June 15, 2026—discover alternative authentication methods.
Explore the timeline reducing SSL/TLS certificate validity from 398 days to 47 days by 2029, enhancing web security through shorter lifespans.
Discover SSL Calendar, which uses familiar calendar interfaces to track SSL certificate expirations, combating tool fatigue with intuitive monitoring.