Malicious Java applet sign with stolen certs 

Malicious Java applet sign with stolen certs

In Applications - By Danielle Walker, 11 March 2013 7:00 AM
Researchers believe the stolen private key belonged to an unwitting Texas consulting company.
Queensland researchers seek 'real world' fix for TLS  

Queensland researchers seek 'real world' fix for TLS

In Networks - By Darren Pauli, 13 February 2013 5:10 AM
Score $300k Govt research grant.
Hackers hijack Bit9 whitelist in targeted attack 

Hackers hijack Bit9 whitelist in targeted attack

In Web/client - By Dan Kaplan, 11 February 2013 9:07 AM
Failed to install its own software.
TurkTrust denies security breach led to certificate gaffe 

TurkTrust denies security breach led to certificate gaffe

In Networks - By Dan Raywood, 9 January 2013 11:40 AM
No 'malevolence, fraud or any other crime factor'.
Google, Microsoft drop fraudulent certificates 

Google, Microsoft drop fraudulent certificates

In Risk - By Dan Kaplan, 7 January 2013 7:16 AM
Turkish certificate authority issued two dodgy certificates.
DigiNotar hack details revealed by Dutch Govt 

DigiNotar hack details revealed by Dutch Govt

In Hackers - By Tom Espiner, 5 November 2012 4:00 PM
Final report released.
Researchers detail laundry list of dodgy crypto deployments 

Researchers detail laundry list of dodgy crypto deployments

In Crypto - By Darren Pauli, 26 October 2012 4:46 PM
Developer hits back at 'rude' research.
Adobe revokes all code signed since 10 July 

Adobe revokes all code signed since 10 July

In Networks - By SC Staff, 8 October 2012 10:24 AM
Follows attack.
Hackers raid Adobe, compromise certificate to sign malware 

Hackers raid Adobe, compromise certificate to sign malware

In Networks - By Dan Kaplan, 1 October 2012 11:30 AM
Compromised cert to be revoked.
Toyota alleges ex-contractor sabotaged IT systems 

Toyota alleges ex-contractor sabotaged IT systems

In Networks - 30 August 2012 3:40 PM
Claims systems broken into, altered.
Microsoft revokes certificates with fewer than 2048 bits 

Microsoft revokes certificates with fewer than 2048 bits

In Crypto - By Dan Raywood, 12 July 2012 11:57 AM
Kills insecure Windows gadgets.
Cyberoam hacked private key posted online 

Cyberoam hacked private key posted online

In Crypto - By Darren Pauli, 12 July 2012 12:42 AM
Tor users extract and decrypt private key.
Comodo flags its certificate service as suspicious 

Comodo flags its certificate service as suspicious

In Networks - By Darren Pauli, 4 July 2012 8:01 AM
Bug fixed, reputation red flags clear.
Flame signed with Microsoft certs 

Flame signed with Microsoft certs

In Applications - By Darren Pauli, 4 June 2012 3:20 PM
Redmond kills cert store, issues patch.
Voluntary SSL standards backed by heavyweights 

Voluntary SSL standards backed by heavyweights

In Networks - By Angela Moscaritolo, 16 December 2011 11:37 AM
But Marlinspike says it won't do squat.
GlobalSign says certs weren't hacked 

GlobalSign says certs weren't hacked

In Hackers - By SC Staff, 15 December 2011 6:31 AM
Thanks everyone.
Dutch CA denies certs breached 

Dutch CA denies certs breached

In Hackers - By Darren Pauli, 9 December 2011 1:56 AM
But internal documents pilfered from vulnerable web database.
Malaysian Government signing key stolen  

Malaysian Government signing key stolen

In Hackers - By Darren Pauli, 15 November 2011 4:52 PM
Used to sign trojan.
Certificate phishing sucks bank customers into Blackhole 

Certificate phishing sucks bank customers into Blackhole

In Messaging - By Dan Raywood, 19 September 2011 12:50 PM
Bank business customers warned of invalid certificates.
Microsoft patches five holes, nukes six certificates 

Microsoft patches five holes, nukes six certificates

In Applications - By Dan Raywood, 15 September 2011 7:46 AM
Light updates hard on DigiNotar.
GlobalSign pre-empts hack, shuts down certificates 

GlobalSign pre-empts hack, shuts down certificates

In Hackers - By Dan Raywood, 8 September 2011 2:09 PM
Certificate authority GlobalSign is investigating reports that the DigiNotar hacker has access to its system.
iPhone data interception tool released 

iPhone data interception tool released

In Networks - By Darren Pauli, 27 July 2011 12:09 PM
Marlinspike provides a good reason to update iOS 4.3.5.
Businesses ‘plagued’ by missing encryption keys 

Businesses ‘plagued’ by missing encryption keys

In Crypto - By Tom Brewster, 17 March 2011 1:38 PM
Afflicts digital certificates, too.
PayPal suspends hacker's account after bogus SSL post 

PayPal suspends hacker's account after bogus SSL post

In Risk - By Chuck Miller, 8 October 2009 11:38 AM
Black Hat demonstration was followed by exploits in the wild.
VeriSign addresses SSL certificate flaw 

VeriSign addresses SSL certificate flaw

In Networks - By Phil Muncaster, 6 January 2009 9:27 AM
VeriSign has moved to address a flaw in its Secure Sockets Layer (SSL) certification technology, which could have allowed hackers to create false certificates.
1
Sign up to receive SC Magazine email newsletters
   FOLLOW US...
Most Read