You might be wondering why in the world you should be concerned or what SSL even means. However, you probably will recognize the green highlighted “https:” at the start of the web address of your online banking or Facebook log-in page. This essentially means that any sensitive information that will be entered into the webpage i.e. passwords, credit card info, will be encrypted as to protect you from having information stolen. The big news and why you should heighten your alert level is because Google has found a vulnerability in the SSL (Secure Socket Layer) version 3.0, in which they have named it The POODLE Attack (Padding Oracle On Downgraded Legacy Encryption). You can read the report here, https://www.openssl.org/~bodo/ssl-poodle.pdf . The issue is most prevalent with the Internet Explorer 6 web browser.
While SSL 3.0 is obsolete, the newer versions have a downgrade function so that older servers can use the security feature. Hackers have found a way to exploit the “backwards dance” between those security certificates. Most of the time the latest protocol version is used but in rare cases it becomes an issue. Unfortunately, as users, there is not much you can do to prevent this as it is a back-end issue with whatever company you are doing business with. The good news, however, is that any legitimate organization has this under control.