Thousands of websites are at risk from a new cyber-attack

Researchers recently discovered a new way that disables the…
encryption protection of web pages, which, as they warn, could take advantage of hackers aiming to steal sensitive data.
As reported in an article in the british news network BBC, the experts warn that one-third of all servers that use the HTTPS protocol is vulnerable to such an attack.
With the name of Drown, these attacks target passwords, credit card numbers, emails as well as sensitive data.
Experts argue that it has already developed a corrective that helps to prevent such attacks, and in particular have created a tool that identifies websites that might be vulnerable to the Drown attacks. However, as stress, the process of protection of the systems is expected to be time-consuming for the administrators of the site.
As stated in a report that was published, experts have not given the publicity the code that they used in order to prove their theory, since “there is still a large number of servers that are vulnerable to such an attack.”
However, there is no concrete evidence that cyber-criminals have managed to find a way to imitate the particular technique of attack. However, one of the experts said with confidence that he has no doubt that the danger there is on the Internet.
“It is shocking that they found a way to use a very old error, for which we have known since 1998”, said professor Alan Woodward of the university of Σάρρεϊ.
“And all that could have been avoided”, he said. “This risk arose because we used a deliberately “loose” encryption-which hackers had managed to crack older – and now returns to haunt us,” concluded Woodward.