[Fed-Talk] DigiNotar update
[Fed-Talk] DigiNotar update
- Subject: [Fed-Talk] DigiNotar update
- From: Todd Heberlein <email@hidden>
- Date: Tue, 20 Sep 2011 10:58:22 -0700
Just some follow-up/closure on the DigiNotar fiasco. It is in bankruptcy. I'm not sure of any other examples where a computer attack directly led to a company going bankrupt.
Hacked security firm closes its doors
I also ran across a report by on of the companies conducting the analysis. It is pretty damning. Section "4.4 Current network infrastructure at DigiNotar" was particularly interesting. Here were some of the findings:
* We have strong indications that the CA-servers, although physically very securely placed in a tempest proof environment, were accessible over the network from the management LAN.
* All CA servers were members of one Windows domain, which made it possible to access them all using one obtained user/password combination.
* The password was not very strong and could easily be brute-forced.
* The software installed on the public web servers was outdated and not patched.
* No antivirus protection was present on the investigated servers.
Interim Report DigiNotar Certificate Authority breach “Operation Black Tulip”
|
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden