More Salt in their wounds: DigiCert hit as hackers wriggle through (patched) holes in buggy config tool

5 May 2020

DigiCert, slinger of SSL/TLS certificates, has warned that it too has suffered at the hands of Salty miscreants as a key used for Signed Certificate Timestamps (SCT) was potentially compromised. The company joins Ghost.org and LineageOS in being the target of ne’er do wells as attackers exploited a disclosed (and patched) vulnerability in the Salt configuration tool over the weekend, spraying exposed infrastructure with cryptocurrency mining software.

Read full article on The Register

Date:

5 May 2020

Categorie(s):

NEWS

Tag(s):

DigiCert, Salt

School Employee Allegedly Framed a Principal With Racist Deepfake Rant27 April 2024
Russia Vetoed a UN Resolution to Ban Space Nukes27 April 2024
Cybersecurity firm Darktrace sold to Thoma Bravo for $5.3 billion27 April 2024
Bogus npm Packages Used to Trick Software Developers into Installing Malware27 April 2024
7-Year-Old 0-Day in Microsoft Office Exploited to Drop Cobalt Strike27 April 2024