POODLE Internet Security Issue
UPDATE
In order to avoid unnecessary impact to our merchants’ businesses, the planned ending of support for Internet Explorer (IE) 6 has been delayed. At this time, a cut-off date is TBD. Please check back regularly for additional updates. In the meantime, we strongly recommend that all merchants update to the most current version of their preferred browser to help minimize a potential security vulnerability. This is particularly critical for merchants using IE 6.
PREVIOUS
As you may be aware, an Internet-wide security issue has been reported that affects anyone using Internet Explorer (IE) 6 or older as their Internet browser. This issue is commonly referred to as POODLE and affects older browsers, which use SSL version 3. Authorize.Net itself is not vulnerable to POODLE, but we are making changes to our systems to assure that we are providing our merchants and their customers with the highest degree of security possible.
As of 7:00 AM Pacific time, Friday, October 17th, Authorize.Net will be preventing access to the Merchant Interface and our Support Center for anyone currently using IE6 or older.On November 4, 2014, we will be disabling the use of SSLv3 within our systems. This means that if your website or shopping cart solution uses SSLv3 to send transactions to Authorize.Net, you will no longer be able to process transactions. You will also no longer be able to access any secure Authorize.Net pages from IE6.
If you are using Internet Explorer, please make sure you are using the most current version of Internet Explorer in order to ensure no disruption to your business processes.
Additionally, if you are using a third-party solution to post transactions to the Authorize.Net system, please contact your solution provider to ensure that your solution’s integration with the Authorize.Net API does not rely on SSL version 3.
If you have any questions, please contact Customer Support. Thank you for your prompt attention to this matter.
We do NOT recommend waiting, this is going to cripple your payments as the different platforms move to disable SSLv3, which they will very soon.
The fix requires several file edits in order to make your Zen Cart payment modules such as Authorize.net, PayPal etc. compliant … EVEN IF YOU DO NOT ACCEPT CREDIT CARDS. We can do this for you HERE
