I want to share a critical update regarding the security flaw in Cloudflare's infrastructure that I recently analyzed on my blog and on Ru Habr. The issue is in Universal SSL ignoring CAA records and Account Binding (RFC 8657) has officially entered the coordination phase.
Following last year's cyberattacks, even previously laid-back people are now concerned about cybersecurity. That's why we decided to make the twelfth Positive Hack Days information security forum even more open and large-scale: it will be held at Gorky Park in Moscow on May 19 and 20, 2023. We've already started preparing for the event and are accepting applications from speakers. You can submit a talk topic until March 25.
