A new hacking tool called BEAST cracks TLS 1.0/ SSL in under 10 minutes.
The attack is very specific and the attacker needs access to the network, however most servers are using version 1.0 of TLS required for the crack to work.
You can check the version of your TLS/SSL by running
openssl s_client -connect server.com:443 -[sslversion]
use ssl3, ssl2, tls1, dtls1 for [sslversion] to verify versions from an openssl enabled machine…