Forum Systems CEO featured in CIO Article on Heartbleed

By Ona Blanchette | Date posted: June 13, 2014

Mamoon Yunus, Forum Systems CEO, was recently featured in Why Open Source Software Isn’t as Secure as You Think by Paul Rubens. The article dives into the potential issues with using open source code to manage secure information traffic, and talks specifically about OpenSSL and the major security flaw, Heartbleed.
Read more

Six New OpenSSL Security Vulnerabilities Discovered Since Heartbleed

By Ona Blanchette | Date posted: June 11, 2014

In a recent security advisory from June 5th, 2014, six new vulnerabilities were disclosed on OpenSSL’s website. It’s important that these news OpenSSL flaws are being discovered quickly and getting fixed. But these new discoveries are indicative of other potential devastating security flaws that remain buried in the labyrinth of OpenSSL code.  Once again, the discoveries expose the risk of using OpenSSL to process SSL traffic for
your mission critical infrastructure and applications.
Read more

OpenSSL is Fṓṝked

By Mamoon Yunus | Date posted: May 12, 2014

The flensing began rather quickly with the OpenBSD team cleaning up 90,000 lines of code within a week of Heartbleed.  OpenSSL then got royally fṓṝked by OpenBSD and LibreSSL was born.  The divergence between OpenSSL and LibreSSL continues while OpenSSL fights against change and LibreSSL tries to modernize and flense the OpenSSL codebase.

Read more

5 Questions to Ask your Load Balancer Vendor

By Ona Blanchette | Date posted: April 22, 2014

Heartbleed, the recent security flaw found in OpenSSL, is just one of many flaws discovered in this open source code base. Many load balancer providers have bolted on OpenSSL to manage SSL traffic through their product. Here are five questions you should ask to ensure you are not at risk for more OpenSSL flaws: Read more