‘FREAK’ Security Flaw

‘FREAK’ Security Flaw

You may have seen in the news that a new security vulnerability, called the ‘Freak’ security flaw, has been found in the SSL encryption that browsers and websites use to transmit secure data and impacts 10% of the internet’s top sites as well as Safari for iOS and desktops, Chrome for Android and desktops, Internet Explorer and Opera. This vulnerability allows a man-in-the-middle attacker to intercept secure transmissions and force the affected browser to encrypt data at a lower encryption level.

What does this mean for your EventPilot conference app?

EventPilot technologies are secure and unaffected by the FREAK flaw

  • The EventPilot app uses secure SSO communication when sending sensitive information during login.
  • The EventPilot servers and CMS have been tested for the FREAK flaw and are not vulnerable.

What does this mean for you?

For your own security, we encourage you to update your web browsers, iOS and Android devices as soon as the flaw is fixed – which should be in the next few days. It would also be a good idea to change your passwords, especially on services you use on your mobile devices.

For more information and to learn when patches become available for your browsers and devices, please visit https://freakattack.com.