Latest or all posts or last 15, 30, 90 or 180 days.
Memory Upgrades for 2019 Mac Pro - Save Up to 65% vs Factory Costs
877-865-7002
Today’s Deal Zone Items... Handpicked deals...
$3198 $1798
SAVE $1400

$2799 $2099
SAVE $700

$199 $129
SAVE $70

$1599 $1599
SAVE $0

$140 $100
SAVE $40

$699 $549
SAVE $150

$4499 $2649
SAVE $1850

$1699 $1199
SAVE $500

$5999 $5499
SAVE $500

$181 $141
SAVE $40

$7699 $7199
SAVE $500

$4499 $2649
SAVE $1850

$400 $330
SAVE $70

$4499 $2649
SAVE $1850

$4999 $4599
SAVE $400

$2350 $1950
SAVE $400

$1699 $1299
SAVE $400

$799 $699
SAVE $100

$200 $160
SAVE $40

$1997 $897
SAVE $1100

$250 $110
SAVE $140

$1398 $898
SAVE $500

$1199 $1099
SAVE $100

$3999 $2499
SAVE $1500

$200 $170
SAVE $30

$3999 $2499
SAVE $1500

$1498 $1398
SAVE $100

$2497 $1897
SAVE $600

$748 $598
SAVE $150

$899 $699
SAVE $200

Nikon Fails to Secure Its Web Sites for Firmware Updates, Putting All Users at Risk of System Compromise

See my Nikon wish list and get Nikon D850 at B&H Photo.

Sony is far worse with its root kit updater, but Nikon deserves harsh criticism too, for not securing its web sites with https. Nikon does the firmware updater right (in usability and security terms) by having the camera itself do the update—no some 'rootkit' installer on a computer.

There is NO EXCUSE for running insecure http these days, especially so for a corporation. Such a situation should be spelled out in quarterly corporate SEC-mandated reports as gross security incompetence putting the corporation at liability.

In my view, sites that fail to implement https ought to leave the company wide open to class action lawsuits that rightfully and fairly financially destroy the company—bankrupt it by liability for major damage to users of the site. Indeed, I call upon congress to articulate severe penalties for any company that runs an insecure http web site which can be proven to have led to compromise of user computers.

...

As shown below, Nikon’s firmware-updater and related web sites are insecure http sites.

Security is a BFD today—no laughing matter. An insecure site is wide open to all sorts of security risks which an ultimately lead to total system compromise, which ultimately could lead to losing all your passwords and money, just to put it in concrete terms.

Any attempt to use https on Nikon’s firmware updater site is flagged by Apple Safari as shown below, rightfully so.

Nikon does not implement https on these critical sites at all! It is risky and irresponsible for Nikon to offer firmware updates and similar on an insecure web site.

Attempts to use https on a site that does not implement it are properly flagged by Apple Safari a security risk. It is not possible to download Nikon firmware updates securely, because https is not enabled.

Insecure Nikon web site for firmware updates: attempts to use https are properly flagged by Apple Safari

Best Deals, Updated Weekly
View all handpicked deals...

Apple 15.4" MacBook Pro with Touch Bar (Mid 2019, Space Gray)
$2799 $2099
SAVE $700

diglloyd Inc. | FTC Disclosure | PRIVACY POLICY | Trademarks | Terms of Use
Contact | About Lloyd Chambers | Consulting | Photo Tours
RSS Feeds | Twitter
Copyright © 2020 diglloyd Inc, all rights reserved.