BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] And again with the certificate authorities.
- Subject: [Discuss] And again with the certificate authorities.
- From: richard.pieri at gmail.com (Richard Pieri)
- Date: Sat, 11 Oct 2014 17:30:33 -0400
This time around it's HP: http://arstechnica.com/security/2014/10/hp-accidentally-signed-malware-will-revoke-certificate/ With a twist: the CA itself was not compromised. One of the computers trusted with code signing had become infected with a bit of malware that got itself signed with a HP key and then shipped itself back to the distributor. It's been in the wild in its signed formed for the past four years. -- Rich P.
- Prev by Date: [Discuss] Need speaker and topic for October BLU meeting
- Next by Date: [Discuss] Boston Linux Meeting Wednesday, October 15, 2014 - Linux runs the spectrum from High Performance to Power Efficient Computing
- Previous by thread: [Discuss] Perl Tech meeting Tues Oct 14th - Shell-Shocker CGI and Perl DoS bugs
- Next by thread: [Discuss] systemd revisited
- Index(es):