It’s been a while since we compromised to endure CVE-2015-4000 security vulnerability to support some veteran browsers seeing their widely-used in China.

Today we say farewell to this: we’ve fixed all our web sites + service endpoints to withdraw any TLS 1.0/1.1 protocol to prevent our customer from any potential middle-man attack to leak encrypted traffic between web sites/services and our visitors.

Sincerely thanks to Ayaz and other white hat hackers keeping inform us about this security vulnerability.