On Tuesday, March 3, 2015, researchers announced a new SSL/TLS vulnerability called the FREAK attack. It allows an attacker to intercept HTTPS connections between vulnerable clients and servers and force them to use weakened encryption, which the attacker can break to steal or manipulate sensitive data. This site is dedicated to tracking the impact of the attack and helping users test whether they’re vulnerable.

The FREAK attack was discovered by Karthikeyan Bhargavan at INRIA in Paris and the miTLS team. Further disclosure was coordinated by Matthew Green. This report is maintained by computer scientists at the University of Michigan, including Zakir Durumeric, David Adrian, Ariana Mirian, Michael Bailey, and J. Alex Halderman. The team can be contacted at freakattack@umich.edu.

For additional details about the attack and its implications, see this post by Matt Green, this site by the discoverers, this Washington Post article, and this post by Ed Felten.


Who is vulnerable?

The FREAK attack is possible when a vulnerable browser connects to a susceptible web server—a server that accepts “export-grade” encryption.

Servers

Servers that accept RSA_EXPORT cipher suites put their users at risk from the FREAK attack. Using Internet-wide scanning, we have been performing daily tests of all HTTPS servers at public IP addresses to determine whether they allow this weakened encryption. More than a third of all servers with browser-trusted certificates are at risk.

Currently Vulnerable Change Since Mar. 3
HTTPS servers at Alexa Top 1 Million domain names 8.5% down from 9.6%
HTTPS servers with browser-trusted certificates 6.5% down from 36.7%
All HTTPS servers 11.8% down from 26.3%

See below for a list of vulnerable popular domains. You can test servers using the SSL FREAK Check tool or the Qualys SSL Labs’ SSL Server Test, which can also identify other security problems.

Clients

Update (Mar. 5):   Browsers are vulnerable to the FREAK attack because of bugs that allow an attacker to force them to use weak, export-grade encryption. One example is the OpenSSL bug described in CVE-2015-0204, but some other TLS libraries have similar problems. Far more browsers are vulnerable to the FREAK attack than was initially thought when the attack was announced, including:

Patch available now
Vulnerable BrowserStatus
Internet ExplorerPatch available nowSecurity advisory
Chrome on Mac OSPatch available now
Chrome on AndroidPatch available now
Safari on Mac OSPatch available now
Safari on iOSiOS 8 Patch available now
Stock Android Browser
Blackberry Browser
Opera on Mac OSPatch available now

You can check whether your browser is vulnerable using our FREAK Client Test Tool.

Chrome for Windows and all modern versions of Firefox are known to be safe. However, even if your browser is safe, certain third-party software, including some anti-virus products and adware programs, can expose you to the attack by intercepting TLS connections from the browser. If you are using a safe browser but our client test says you’re vulnerable, this is a likely cause.

In addition to browsers, many mobile apps, embedded systems, and other software products also use TLS. These are also potentially vulnerable if they rely on unpatched libraries or offer RSA_EXPORT cipher suites.


What should I do?

If you run a server …

You should immediately disable support for TLS export cipher suites. While you’re at it, you should also disable other cipher suites that are known to be insecure and enable forward secrecy. For instructions on how to secure popular HTTPS server software, we recommend Mozilla’s security configuration guide and their SSL configuration generator. We also recommend testing your configuration with the Qualys SSL Labs SSL Server Test tool.

If you use a browser …

Make sure you have the most recent version of your browser installed, and check for updates frequently. Updates that fix the FREAK attack should be available for all major browsers soon.

If you’re a sysadmin or developer …

Make sure any TLS libraries you use are up to date. Unpatched OpenSSL, Microsoft Schannel, and Apple SecureTransport all suffer from the vulnerability. Note that these libraries are used internally by many other programs, such as wget and curl. You also need to ensure that your software does not offer export cipher suites, even as a last resort, since they can be exploited even if the TLS library is patched. We have provided tools for software developers that may be helpful for testing.


Popular sites that are susceptible to FREAK

The following sites from the Alexa Top 10,000 websites permit RSA_EXPORT cipher suites, which potentially puts their users at risk from the FREAK attack. This list is current as of March 10 at 8:00 AM EST. We urge these sites to drop support for export cipher suites as soon as possible.

Alexa RankDomainAddress Tested
55ziddu.com84.45.63.57
164coccoc.com123.30.175.29
227ppomppu.co.kr110.45.151.210
265groupon.com184.26.43.170
273jabong.com23.203.7.176
4464shared.com208.88.224.138
453npr.org216.35.221.76
601airtel.in125.19.135.93
615kohls.com23.202.240.45
722adplxmd.com205.186.187.178
740tinyurl.com23.194.152.87
784mit.edu23.6.64.128
798saramin.co.kr182.162.86.29
831suning.com112.84.133.57
865itau.com.br172.224.255.170
913huaban.com60.191.100.98
937vi-view.com50.97.32.135
1040jobrapido.com46.105.106.82
1093wiocha.pl195.225.138.230
1107axisbank.com119.226.139.40
1209jcpenney.com23.202.220.215
1247mgid.com208.94.232.200
1259globososo.com184.173.140.162
1301binaryprofessional.com50.7.157.122
1303refinery29.com50.22.34.142
1332vente-privee.com185.45.180.3
1336wowhead.com23.6.67.58
1369dhgate.com124.42.15.198
1370adxcore.com188.165.36.101
1495estadao.com.br23.6.72.37
1543sweet-page.com50.97.32.133
1556jcrew.com23.199.196.136
1565zdnet.com50.112.160.88
1569bmi.ir89.235.64.67
1658cornell.edu128.253.173.244
1663vesti.ru80.247.32.206
1665uludagsozluk.com188.132.225.181
1671lg.com165.244.62.23
1702umich.edu141.211.243.44
1780extra.com.br23.194.154.91
1791ibtimes.co.uk64.147.114.55
1835syosetu.com111.64.91.10
1852jiameng.com117.78.2.204
1871thrillist.com50.57.33.153
1885dealmoon.com198.23.88.242
1891ihg.com23.202.251.213
1899mashreghnews.ir94.182.146.23
1920ohmyzip.com216.176.192.139
1925alice.it217.169.121.227
1955duba.com114.112.93.100
1962ana.co.jp202.224.1.7
1973gg.com.ua213.227.192.135
1986miui.com42.62.48.148
1999copyscape.com212.100.239.219
2017accountonline.com192.193.8.101
2028timesjobs.com115.112.206.11
2061eltiempo.com200.41.9.39
2077leparisien.fr95.131.142.225
2110epnet.com140.234.254.41
2132bigrock.in103.21.58.212
2143delfi.lt91.234.200.110
2161pontofrio.com.br23.193.175.4
2215unam.mx132.248.10.44
2227indiocasino.com212.64.147.151
2235gobizkorea.com211.119.134.217
2302sedo.com82.98.86.183
2308jstor.org198.108.24.38
2357doctissimo.fr85.116.34.4
2361wannonce.com188.165.15.58
2377lolking.net23.6.67.58
239156.com59.32.213.232
2399itv.com193.35.9.65
2403incruit.com121.254.160.232
2411rotoworld.com64.210.192.54
2418famitsu.com202.90.182.200
2421mafengwo.cn119.254.76.148
2430tradeindia.com14.140.161.58
2519taikang.com116.58.220.1
2701dailybasis.com68.169.73.82
2709beitaichufang.com182.18.17.202
2720eleconomista.es217.116.23.3
2727suntimes.com64.94.90.42
2740talktalk.co.uk62.24.150.2
2756mk.co.kr220.73.139.201
2780made-in-china.com72.32.82.237
2802337.com174.36.254.166
2804twitcasting.tv202.234.23.144
2822gocomics.com66.6.101.183
2835casasbahia.com.br23.194.147.107
2842hotelurbano.com54.174.71.24
2877giga.de80.86.80.168
2883marksandspencer.com23.203.7.229
2907coolenjoy.net222.237.78.174
2952seobook.com207.97.249.100
2967weathernews.jp203.216.211.69
2995www.net.cn42.156.140.7
3100olleh.com183.110.184.90
3114sidereel.com173.247.105.225
3116nsw.gov.au203.3.232.71
3164motorola.com144.188.128.101
3178infibeam.com180.179.101.143
3236usajobs.gov23.47.34.35
3237santander.com.br172.224.248.145
3240wechat.com203.205.142.141
3272ehanex.com203.251.153.26
3303sbicard.com14.140.196.129
3346jorudan.co.jp210.168.27.165
33511hai.cn222.73.36.200
3382enuri.com124.243.126.244
3416afreeca.com121.125.76.89
3451hola.com62.22.171.50
3461trafficshop.com78.140.142.21
3483khan.co.kr203.234.148.252
350219lou.com115.236.99.92
3535afkarnews.ir5.144.129.189
3550icbc.com.cn202.99.30.211
3588lenskart.com54.254.151.162
3599delfi.lv62.63.137.4
3601yinyuetai.com117.79.131.138
3621pc6.com218.6.111.42
3638persianv.com5.144.130.216
3680dominos.co.in202.87.34.218
3695honda.com164.109.25.194
3699kuwo.cn221.238.18.58
3703wmmail.ru185.15.210.21
3711tribalfusion.com204.11.109.195
3714am15.net144.76.226.147
3744dinodirect.com184.173.225.136
3761nordstromrack.com23.193.174.147
3783mediaite.com69.60.14.234
3792standardbank.co.za196.8.136.20
3796hypebeast.com50.112.144.237
3979backlinkwatch.com74.204.189.20
4041juntadeandalucia.es217.12.24.33
4088lan.com67.15.147.205
4092sec.gov23.203.5.89
4099gingersoftware.com173.231.146.230
4100marketgid.com87.242.88.80
4195nespresso.com91.209.84.237
4206gearbest.com50.97.75.179
4240key-find.com50.97.32.136
4248rincondelvago.com198.64.137.53
4291cjmall.com210.122.101.150
4322topshop.com23.194.147.74
4345delfi.ee185.20.100.249
4379pearson.com159.182.33.151
4382funweek.it151.1.71.171
4383linkprice.com222.236.44.131
4440virtualedge.com74.205.242.20
4453yes24.com61.111.13.101
4454pcfaster.com180.76.2.25
4456veoh.com69.167.127.57
4467ets.org144.81.88.152
4491rs-online.com80.169.5.117
4531alternet.org198.16.5.137
4557ria.com213.95.148.25
4558mamaclub.com61.64.53.205
4591lefrecce.it23.194.156.12
4592sofmap.com61.204.171.132
4624propellerads.com78.140.145.202
4677entekhab.ir94.182.146.40
4697eldiario.es37.46.75.24
4725pearltrees.com93.184.35.40
4744gongkong.com59.151.1.94
4746subscribe.ru81.9.34.190
4753e-rewards.com63.241.211.118
4767sleazyneasy.com68.169.101.206
4803kaixin001.com220.181.103.141
4880ip138.com61.140.13.81
4884katestube.com64.188.53.206
4960nova.cz88.86.114.130
4962usnetads.com74.208.192.200
4987filmstarts.de62.39.143.50
4992mangocity.com121.34.253.140
5015hostgator.in103.21.59.167
5082youmaker.com64.62.138.65
5135ohio.gov156.63.96.228
5136jahannews.com87.107.52.140
5153dereferer.org195.234.228.80
5169fishmpegs.com68.169.73.82
5197googleping.com208.109.97.183
5248trafficholder.com64.111.214.2
5284markt.de213.95.6.42
5368alriyadh.com89.189.232.23
5446gem.pl85.232.225.226
5587voici.fr89.31.150.122
5650orange.es62.36.20.46
5671lufax.com211.95.2.97
5757techgig.com115.112.206.15
5824vikatan.com180.150.140.172
5855umeng.com211.151.151.6
5941porsche.com84.21.48.97
5956designspiration.net64.207.147.221
5960draftkings.com23.203.3.237
5972alltop.com184.106.130.115
5977startlap.com77.111.91.52
5978canadiantire.ca205.210.17.105
599133lc.com183.136.217.16
6002seoul.co.kr211.169.247.231
6018labirint.ru194.84.83.148
602483suncity.com122.152.179.70
603424ur.com91.202.65.130
6051sciencealert.com119.81.53.4
6052germanbankersecrets.org50.7.157.122
6054dreammail.jp106.186.45.12
6056dir.bg194.145.63.12
6061yootheme.com188.226.251.160
6095elnuevodia.com196.32.153.146
6135game321.com37.58.67.11
6164totheglory.im38.83.103.226
6371auto-profit-replicator.com198.154.200.85
6443hanjin.co.kr203.251.153.29
6448cr173.com218.6.111.42
6478infor.pl193.164.157.245
6495findthebest.com50.18.121.78
6526beyazperde.com62.39.143.50
6564stamps.com216.52.211.93
6622mps.it195.7.19.86
6648makeupalley.com69.60.134.134
6715leggo.it85.18.214.165
6732plan-q-secret.com188.165.35.54
6745rtl.be81.92.238.91
6772cue-monitor.jp210.227.82.43
6774wsodownloads.info185.66.140.67
6819femina.hu195.228.155.84
6833ad-center.com208.99.88.30
6860soaindo.com119.81.21.170
6893todaysppc.com61.100.186.155
6984correos.es193.148.158.218
7006daniweb.com74.53.219.188
7037nissan.co.jp150.63.3.21
7039myfxbook.com108.163.193.212
7072rzeczpospolita.pl217.149.245.170
7079savenkeep.com81.88.48.82
7099advego.ru95.163.127.68
7123trojmiasto.pl193.104.50.210
7252themarysue.com69.60.24.234
7257freedigitalphotos.net95.138.157.18
7304lordandtaylor.com69.10.139.22
7345geeksforgeeks.org119.18.54.25
7360madewell.com23.202.222.232
7400uninstallmaster.com50.97.32.152
7412planalto.gov.br189.9.37.9
7426dip.jp61.197.187.238
7529telenet.be84.116.34.18
7545hellomagazine.com62.22.15.85
7566subtitles.at212.124.121.146
7581fbdownloader.com54.245.81.123
7608copytraderpro.com50.7.157.122
7629brown.edu128.148.252.129
7668ripoffreport.com192.225.215.36
7711n4hr.com184.173.179.185
7722vw.com.tr217.68.221.221
7730minijuegos.com217.13.124.222
7758deser.pl80.252.0.132
7766calcalist.co.il192.115.80.66
77745pao.com125.90.204.47
7775coach.com23.202.227.155
7796linksys.com66.161.11.90
7813networksolutionsemail.com205.178.146.50
7818qianxs.com211.144.120.28
7841wikimart.ru195.208.182.2
7859nielsen.com138.108.20.122
7872coocan.jp202.248.237.141
7889cnsnews.com199.175.56.184
7895chanet.com.cn211.151.83.246
7915streetdirectory.com54.169.90.138
7944davidsbridal.com208.74.49.181
7955eurobank.gr193.58.70.3
7963priberam.pt62.28.135.67
7985themalaysianinsider.com203.223.159.194
8008x3xtube.com64.111.213.29
8017gyakorikerdesek.hu91.198.131.12
8019jeep.com129.9.76.228
8024vno.co.kr121.162.155.183
8035macmillandictionary.com195.138.194.22
8099gaymaletube.com64.188.56.183
8107rzd.ru217.175.140.90
8163newsen.com27.1.17.140
8165netcombo.com.br201.6.19.16
8220escapadarural.com176.31.247.181
8221lyricsmode.com178.18.22.163
8247pinkvilla.com174.129.200.25
8286sensacine.com62.39.143.50
8308element14.com83.100.177.204
8373ucr.edu138.23.226.208
8388unext.jp125.63.43.46
8455restorationhardware.com23.202.240.45
8479yengo.com27.254.59.193
8485lfmall.co.kr121.50.21.220
8531jn.pt80.251.169.144
8568gordonua.com91.224.10.20
8601bluetradingonline.net50.7.157.122
8652wordtracker.com148.251.89.68
8660mbusa.com141.113.146.23
8685ui.ac.id152.118.24.181
8734ynetnews.com192.115.80.66
8745parsine.com94.182.146.66
8779photo.net64.95.64.39
8794baharnews.ir87.107.133.77
8813omniboxes.com50.97.32.151
8847senate.gov23.202.229.166
8851diegrossechance.net50.7.157.122
8870deichmann.com145.253.207.220
8875iesa.co50.31.86.60
8881vertex42.com216.177.136.65
8889streamay.com198.12.83.146
8950doortodoor.co.kr61.33.235.20
8991ecpic.com.cn112.64.185.50
9016transrush.com113.106.94.46
9093real.gr62.1.44.131
9158ntt.com210.226.39.112
9242translate.ru62.152.52.123
9266ddo.jp219.94.135.204
9315cpmfx.com81.4.124.18
9324femina.mk217.16.95.60
9348ytn.co.kr183.111.158.30
9352numbeo.com176.9.57.206
9358kotree.com121.254.168.49
9411iporter.com222.239.73.34
9467bharatiyamobile.com72.167.40.178
9470wileyplus.com199.171.200.191
9480automaticmobilecash.com75.98.168.189
9494bolsademulher.com178.32.160.243
9502brokenlinkcheck.com96.43.131.30
9516hitosara.com125.63.40.49
9554sd864.com203.175.171.38
9587dream-demo.com198.154.224.109
9597closermag.fr83.231.216.103
9598webike.net125.206.119.33
9674lifemedia.jp210.131.1.196
9755kproxy.com76.73.41.170
9759resona-gr.co.jp202.211.194.111
9797benchmark.pl195.138.211.170
9850183.com.cn211.156.219.109
9919imovelweb.com.br152.186.33.197
9934heydouga.com65.39.253.110
9944geo-online.co.jp203.131.196.197
9978shafaf.ir94.182.146.19
9985navercorp.com125.209.210.19

The complete list of Alex Top 1 Million domains with servers that permit RSA_EXPORT cipher suites is available here.