It was found that 3scale's APIcast gateway enabled TLS 1.0 protocol. An attacker could target traffic using this weaker protocol and break its encryption, gaining access to unauthorized information. TLS 1.2 or stronger should be used; TLS 1.0 should be avoided, and TLS 1.1 is slated for deprecation by various industry entities in early 2020.