Bad Certificates
Posted by: ndebord
Date: September 11, 2011 01:36AM

This from the hacker claims more certs are broken into.

http://pastebin.com/GkKUhu35

extract:

"Third: You only heards Comodo (successfully issued 9 certs for me -
thanks by the way-), DigiNotar (successfully generated 500+ code
signing and SSL certs for me -thanks again-), StartCOM (got connection
to HSM, was generating for twitter, google, etc. CEO was lucky enough,
but I have ALL emails, database backups, customer data which I'll
publish all via cryptome in near future), GlobalSign (I have access to
their entire server, got DB backups, their linux / tar gzipped and
downloaded, I even have private key of their OWN globalsign.com
domain, hahahaa).... BUT YOU HAVE TO HEAR SO MUCH MORE! SO MUCH MORE!
At least 3 more, AT LEAST! Wait and see, just wait a little bit like I
said in Comodo case."

N

Re: Bad Certificates -- Now it's DigiNotar...
Posted by: gordon451
Date: September 20, 2011 08:48PM

http://arstechnica.com/security/news/2011/09/comodo-hacker-i-hacked-diginotar-too-other-cas-breached.ars

Gordon.

____________________
Gigabyte H61M-USB3-B3 r2.0, I5-2400 3.10GHz, 4GB RAM; W7HPx64 SP1, Lotus SmartSuite 9.8, K-Meleon74, Opera 12.17, IE9, Eudora 6.2, Foxit Reader 5.3.1.0606, PaintShop Pro 6.02, Avast! 10.0.2206

____________________
Early to bed and early to rise makes a bloke crook, broke and stupid.

K-Meleon forum is powered by Phorum.