Comments on: RSA-512 Certificates abused in the wild

By: .blog » Archiv » Slabé RSA kľúče v TLS a DNSSEC

.blog » Archiv » Slabé RSA kľúče v TLS a DNSSEC — Thu, 26 Jul 2012 11:30:06 +0000

[...] môžu predstavovať bezpečnostné riziko, sa za posledný rok objavilo viacero. Autori malware zneužili slabé 512-bitové RSA kľúče z certifikátov, ktoré mali vhodnú kombináciu X.509v3 extensions a podpisovali nimi malware. Útočníci v tomto [...]

By: .blog » Archiv » Malware podepsán „od Microsoftu“

.blog » Archiv » Malware podepsán „od Microsoftu“ — Fri, 08 Jun 2012 14:00:23 +0000

[...] i když naštěstí pořád rarita – viděli jsme to u ukradených certifikátů (Stuxnet) a certifikátů se slabými faktorizovatelnými klíči. A teď ještě přibyl případ, kde se malware tvářil, jako by byl podepsán přímo od [...]

By: Cryptography: Was RSA 512 ever widely used? - Quora

Cryptography: Was RSA 512 ever widely used? - Quora — Mon, 28 May 2012 19:04:22 +0000

[...] Michael Hamburg, cryptography PhDIt's still occasionally used. http://blog.fox-it.com/2011/11/2…Comment Loading… • Post • 12:04pm Add [...]

By: 512-bit Certificates Abused in the Wild - Identity On

512-bit Certificates Abused in the Wild - Identity On — Thu, 12 Apr 2012 15:52:38 +0000

[...] malware used in a spear-phishing attack was signed using 512-bit RSA Web server certificates. In a recent blog post from FOX-IT, it was confirmed that the abused certificates were issued by more than one CA to more than one [...]

By: SSL Certificate Baseline Requirements 1.0 - Identity On

SSL Certificate Baseline Requirements 1.0 - Identity On — Thu, 12 Apr 2012 14:39:35 +0000

[...] by attacking third-party registration authorities. Most recently, due to a spear-phishing attack, some SSL CAs were found to be issuing certificates with weak 512-bit keys. All of these short-comings have either been addressed directly or mitigated in the [...]

By: Michael Sandee

Michael Sandee — Wed, 04 Jan 2012 23:37:07 +0000

Yeah, after I wrote the blog a colleague noticed me, kind of a slap in face moment. To date I haven’t though, will post a comment if I have.

By: mac

mac — Tue, 03 Jan 2012 21:12:41 +0000

>> “We are however unable to verify this as the relevant certificate has expired in April 2011″

Couldn’t you just “go back in time” on your workstation by adjusting the time and date? Seems all other checks are off anyway.

By: HitmanPro 3.6 «

HitmanPro 3.6 « — Fri, 23 Dec 2011 14:48:02 +0000

[...] NEW: Added detection for files signed with weak Authenticode signatures (RSA 512-bit keys). See also: http://blog.fox-it.com/2011/11/21/rsa-512-certificates-abused-in-the-wild/ [...]

By: SSL Certificate Baseline Requirements 1.0 « SSL Blog - Entrust Insights

SSL Certificate Baseline Requirements 1.0 « SSL Blog - Entrust Insights — Wed, 14 Dec 2011 14:21:56 +0000

By: 512-bit Certificates Abused in the Wild « SSL Blog - Entrust Insights

512-bit Certificates Abused in the Wild « SSL Blog - Entrust Insights — Mon, 28 Nov 2011 19:59:58 +0000