Security News

Is Kazakhstan about to man-in-the-middle diddle all of its internet traffic with dodgy root certs? (The Register)
2015-12-03 21:07

Free HTTPS certs for all Let's Encrypt project opens doors to public (The Register)
2015-12-03 19:37

Windows machines stop trusting Dell's two unconstrained root CA certs (Help Net Security)
2015-12-01 13:31

Microsoft has updated the Certificate Trust list for all supported releases of Microsoft Windows so that the two digital certificates (complete with inadvertently disclosed private keys) used by Dell ...

Week in review: Dell computers shipped with root CA cert and private key, analytics services tracking users via Chrome extensions (Help Net Security)
2015-11-30 06:57

Here's an overview of some of last week's most interesting news and articles: Four ways an attacker can infiltrate an organization by diverting security solutions Even if we theoretically had th...

More than 900 embedded devices share hard-coded certs, SSH host keys (Help Net Security)
2015-11-26 09:20

Embedded devices of some 50 manufacturers has been found sharing the same hard-coded X.509 certificates (for HTTPS) and SSH host keys, a fact that can be exploited by a remote, unauthenticated attacke...

Another root CA cert with key found on Dell's machines (Help Net Security)
2015-11-25 13:10

The main piece of news on Monday was that Dell's desktop PCs and laptops shipped since August 2015 contain a root CA certificate (eDellRoot) complete with the private cryptographic key for it. Attacke...

Second Dell backdoor root cert found (The Register)
2015-11-25 05:35

Additional Self-Signed Certs, Private Keys Found on Dell Machines (Threatpost)
2015-11-24 12:00

Two more self-signed root certificates and corresponding private keys were found on Dell computers.

Dell shipped computers with root CA cert, private crypto key included (Help Net Security)
2015-11-24 10:25

All desktop and laptops shipped by Dell since August 2015 contain a root CA certificate (eDellRoot) complete with the private cryptographic key for it, opening users to the danger of Man-in-the-Middle...

Dell Computers Ship with Root Cert, Private Key (Threatpost)
2015-11-23 20:53

Different models of Dell computers have shipped with a preinstalled root certificate and private key, opening the machines up to man-in-the-middle attacks.