We’re Now Secure From Logjam: No Attacks for Dolphin Browser Users
What is Logjam?
The Logjam attack is against the TLS protocol. The Logjam attack allows a man-in-the-middle attacker to downgrade vulnerable TLS connections to 512-bit export-grade cryptography. This allows the attacker to read and modify any data passed over the connection. The attack is reminiscent of the FREAK attack, but is due to a flaw in the TLS protocol rather than an implementation vulnerability, and attacks a Diffie-Hellman key exchange rather than an RSA key exchange. The attack affects any server that supports DHE_EXPORT ciphers, and affects all modern web browsers. 8.4% of the top 1 million domains were initially vulnerable.
Install Dolphin Jetpack V7.2.3 to be secure against both Logjam & FREAK Attack
At Dolphin, we take security very seriously. Our developers have been working hard on a fix, and have resolved some SSL vulnerabilities in our new version of Jetpack v7.2.3. Prior to this version, when you visited the test link at https://weakdh.org/, it would warn you that Dolphin was not secure against Logjam. But after installing Jetpack v7.2.3 on your device, the site will indicate that “your browser is safe against the Logjam attack.”
Additionally, Dolphin Jetpack V7 is also secure against FREAK attack vulnerabilities.
Check the test on https://freakattack.com/ with Dolphin
Download Dolphin Browser as well as Dolphin Jetpack on Google Play to be safe against various vulnerabilities. Please note that you will need to re-enable Jetpack and restart Dolphin to activate this new version of Jetpack.