Yahoo Should Consider SSL a Minimal Security, Privacy Standard for Email

Yahoo is being second-guessed more today than a mediocre baseball manager.

Two days after announcing it would finally turn SSL on by default for its email users starting in January, the company is getting a halfhearted pat on the back from the security industry, which can’t help but ask: “What took you so long?”

Yahoo is the last holdout among major Internet companies to encrypt communications by default, years behind Google, and many months behind Microsoft and Facebook, for example. It’s been close to a year since SSL was offered as an option for users and one can’t help but think that changes in executive management, layoffs and poor earnings have forced Yahoo to kick security down the priority ladder.

SOURCE: threatpost.com

Information Security Buzz