API flaws said to have left Symantec SSL certificates vulnerable to compromise

Chris Byrne, an information security consultant and instructor for Cloud Harmonics, published a post to Facebook outlining a serious problem with the processes and third-party API used to deliver and manage Symantec SSL certificates. If exploited, the flaws would allow an attacker access to public and private keys, as well as the ability to reissue or revoke certificates. Google disclosed last week that they would deprecate and remove trust in the certificates, which is part of the reason why Byrne’s discovery is just now coming to light.”]

Source: https://www.csoonline.com/article/3184897/api-flaws-said-to-have-left-symantec-ssl-certificates-vulnerable-to-compromise.html

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text