Google drops TLS 1.3 support for Chrome 56 following proxy connection failures

Security Digest Information security news and advice from TechTarget's network | March 1, 2017 [TechTarget]( FEATURED STORY [Chrome backs out of TLS 1.3 support after proxy issues]( by Peter Loshin, Site Editor After Google rolled out the latest version of Chrome, Blue Coat proxy software issues prompt rollback of TLS 1.3 support in latest version of Chrome browser. (SearchSecurity.com) Advertisement NEWS [Edge and IE vulnerability disclosed by Project Zero]( Google Project Zero's 90-day disclosure policy bites Microsoft again as a zero-day Edge/IE vulnerability is made public before a patch is available. (SearchSecurity.com) [Project Zero discovers Cloudflare bug leaking sensitive customer data]( The Cloudflare bug in CDN is fixed after causing sensitive customer data to leak. Google Project Zero discovered the flaw, and users were warned to change passwords. (SearchSecurity.com) [Suspect in Mirai malware attack on Deutsche Telekom arrested]( News roundup: U.K. authorities arrested a suspect in the Mirai malware attack on Deutsche Telekom. Plus, a judge denies a government request to collect fingerprints, and more. (SearchSecurity.com) Experts: Government Vulnerability Equities Process should be law]( Experts say codifying the Vulnerability Equities Process into law would increase transparency and trust regarding vulnerability disclosure by the government. (SearchSecurity.com) [SHA-1 deprecation more important after hash officially broken]( SHA-1 deprecation in browsers comes as researchers create hash collisions and Google offers website and developer tools to protect against malicious uses. (SearchSecurity.com) [Risk & Repeat: RSA Conference 2017 highlights and trends]( In this episode of SearchSecurity's Risk & Repeat podcast, editors recap RSA Conference 2017 and discuss how the show addressed many security problems, but had very few answers. (SearchSecurity.com) EXPERT ADVICE [DNS reverse address mapping: Exploiting the scanning technique]( Scanning IPv6 addresses can be made easy with DNS reverse mapping. In part two of this series, expert Fernando Gont explains how this technique can be exploited and mitigated. (SearchSecurity.com) [How can enterprises leverage Google's Project Wycheproof?]( Google's Project Wycheproof tests crypto libraries for known vulnerabilities, but there are potential drawbacks to this tool. Expert Matthew Pascucci explains them. (SearchSecurity.com) How a RHEL virtual machine in Microsoft Azure can be exploited]( RHEL virtual machines hosted in Microsoft Azure were recently found to have significant security vulnerabilities. Expert Rob Shapland explains them and what enterprises can learn. (SearchCloudSecurity.com) [What basic steps can improve network device security in enterprises?]( Network device security is a big problem for enterprises, but there are some basic steps they can take to improve it. Expert Matthew Pascucci outlines the process. (SearchSecurity.com) About This E-Newsletter This e-newsletter is published by the TechTarget network. To unsubscribe from Security Digest, [click here](. Please note, this will not affect any other subscriptions you have signed up for. TechTarget Security Media Group, 275 Grove Street, Newton, MA 02466. Contact: webmaster@techtarget.com Copyright 2016 TechTarget. All rights reserved. [TechTarget](