Threat Post - August 1, 2016
Researchers have found flaws in the Web Proxy AutoDiscovery protocol tied to DHCP and DNS servers that allow hackers spy on HTTPS-protected URLs and launch a myriad of different malicious attacks against Linux, Windows or Mac computers. According to the security firm SafeBreach, this vulnerability allows hackers to monitor the URLs of every request the browser makes. With that information, SafeBreach says it’s possible for a hacker to see the entire URL of every site visited even if the traffic is protected with HTTPS encryption.
See more at: WPAD Flaws Leak HTTPS URLs https://wp.me/p3AjUX-v6K