Chrome: New SSL Certificates Can’t Support Client Authentication Starting June 15, 2026
Google’s Chrome Root Store Policy (v1.6) update encourages CAs not to wait to shift to PKI hierarchies that support server authentication only Google Chrome has announced that it will stop trusting public server certificates (SSL/TLS certificates) that support the client authentication extended key usage (clientAuth EKU) starting June 15, 2026.Continue Reading
Monitoring Should Take Center Stage as Let’s Encrypt Abandons SSL Expiration Notifications
Let’s Encrypt will stop sending SSL/TLS expiration emails effective June 4 — now’s the time to ensure you have SSL monitoring and alerts set up Let’s Encrypt (LE) announced earlier this year that it would discontinue SSL/TLS expiration notification emails on Wednesday, June 4. That’s just two days from now,Continue Reading
CISO Survival Guide: 8 Cyber Security Challenges & How to Navigate Them
We’ve asked 8 experts how they recommend maneuvering through a tumultuous cyber security threat landscape — here are their solutions Portnox’s survey data shows that 77% of Chief Information Security Officers (CISOs) are “very” or “extremely” worried about their jobs. (Who can blame them?) The cyber security threat landscape isContinue Reading
Microsoft to Enforce Bulk Sender Authentication Requirements Starting May 5
Microsoft joins Gmail and Yahoo in expanding their efforts to control the spam and malicious emails that make it into users’ inboxes by enforcing stringent bulk email sender requirements On April 2, Microsoft announced its plans to step up its commitment to hardening consumer email inboxes against spammers and scammersContinue Reading
Industry to Shift to 47-Day SSL/TLS Certificate Validity by 2029
Starting in 2026, SSL/TLS certificate lifespans will be reduced from the current maximum of 13 months. By 2029, all public SSL/TLS certificates will have a 1.5-month maximum validity. Here’s what you need to know. On April 11, 2025, the CA/Browser Forum (CA/B Forum) approved Ballot SC-081v3, a proposal from AppleContinue Reading
By the Numbers: 50 Cyber Crime Statistics for 2025
Explore the industry’s latest cyber crime statistics worldwide to stay abreast of the latest developments and how they may affect businesses and customers worldwide Why do bad guys rob banks? “Because that’s where the money is.” This famous quote is attributed to U.S. bank robber William Francis “Slick Willie” Sutton,Continue Reading
SSL and TLS Versions: Celebrating 30 Years of History
March 2025 marks the 30th anniversary of the secure sockets layer (SSL) protocol’s version 2.0 debut. Celebrate with us as we explore the history of the various SSL and TLS protocol versions over the last three decades When Netscape Communications unveiled its groundbreaking Netscape Navigator browser in November 1994, fewContinue Reading
Our Recent Development Cycles – Three, Four and Five
Providing insight into our product roadmap and, subsequently, the projects being worked on in our six-week cycles. We’ve been working hard and are excited to share a summary of the projects completed during Cycles Three and Four, as well as what we’re currently focusing on in Cycle Five. CycleContinue Reading
RSS Feeds for Updates
You can now subscribe to your favorite collectives’ updates using RSS feeds! RSS is an open standard that lets you get automatic notifications whenever a collective posts new updates, similar to following someone on social media, but delivered directly to your favorite news reader app or RSS client. Since RSSContinue Reading
An Update on Virtual Cards
We know many of you, both Fiscal Hosts and Collective admins, are eager to see virtual cards return to the Open Collective platform. We’ve been working hard behind the scenes to make this happen, but it’s proven to be more complex than we initially hoped. We’ve learned a lot alongContinue Reading