HackThisSite.org News: Security Advisory: SSL/TLS 'BEAST' Exploit
by: Kage, 01:09 am Wednesday September 28th, 2011
As best as we can tell, while this may truly pose a serious risk if successfully injected into a secure website via an exposed cross-site scripting exploit, we and many others do not believe this will cause any real problems. At this time, Mozilla, Google, and perhaps also Microsoft are working to secure their browsers against this for future releases.
HackThisSite still intends on preparing a fully-SSL/TLS encrypted capability for the website and forums in spite of this potential exploit. Within the next couple website updates, we will be releasing our Root CA (for use with the website, IRC, and anywhere else we will be using SSL).
If anyone has anything further to add on this story, please feel free to post a comment. Also, articles concerning this exploit are more than welcome.
Source: Ars Technica