Russian hacker group patches Chrome and Firefox to fingerprint TLS traffic | ZDNet
Turla hacker group lives up to its reputation with another clever/wacky hacking technique.
The Russian hacker group Turla has been discovered patching Chrome and Firefox to fingerprint TLS traffic. Experts have theorized that the TLS fingerprinting would allow Turla to spot the victim’s encrypted traffic stream while it connected to various websites across the web. This latest news is yet another example of how traditional web browsers pose serious risks for organizations and individuals.
News Insights: Kowsik Guruswamy, CTO at Menlo Security
“This is a great example of how creative hackers are getting and a taste of what we might see for future attacks. TLS was adopted to provide security and privacy, and now over 90% of all Chrome traffic is encrypted. This attack could now mean those security protections go out the window.”