Raccoon Attack: A timing vulnerability in the TLS 1.2 specification.

– The attack only affects DH-based cipher suites or some DHE-based cipher suites.
– OpenSSL 1.1.1, ECDHE-based cipher suites, and TLS 1.3 aren't affected.
– If exploited, attackers could decrypt all TLS-protected network traffic.

Read more:

Sign in to participate in the conversation – a Fediverse instance for & by the Chaos community