Is anybody planning on updating webmail.merck.com so that anybody who comes along can't download the contents of the server memory, including the SSL private key?
Every competent outfit was up late two nights ago fixing their servers. The 9-5 types who pay attention to the industry news fixed it during the day yesterday. If Merck doesn't update its software and switch to a new key then even the fancy new authentication system they're rolling out will be trivial to bypass.
Every competent outfit was up late two nights ago fixing their servers. The 9-5 types who pay attention to the industry news fixed it during the day yesterday. If Merck doesn't update its software and switch to a new key then even the fancy new authentication system they're rolling out will be trivial to bypass.