SSL broken! Hackers create rogue CA certificate using MD5 collisions

TalkBack 1 of 75:: Next »

Thread View
Flat View

At least they're talking to the vendors first.: Now if only the CAs will get off their butts and implement some changes...; Posted by: Letophoro Posted on: 12/30/08 You are currently: a Guest | Members login | Terms of Use

Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

At least they're talking to the vendors first. Letophoro | 12/30/08

CAs and SSLs Are Irrelevant to Phishing Attacks: Seamus O'Brog | 12/31/08

WRONG Timewellwasted | 12/31/08

Wrong My Aunt Fanny: Seamus O'Brog | 12/31/08

You May Be Stubborn Timewellwasted | 12/31/08

Who says... LiquidLearner | 12/31/08

Simple, foolproof, ... twaynesdomain | 12/31/08

Phishing uses a similarly spelled name georgeou | 12/31/08

They were not talking to the vendors first.... ian.dell | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions twinbit | 12/30/08

Sitekey is worthless... mrlinux | 12/30/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions zaza1233 | 12/30/08

Test if your certificate has been signed signed with a insecure algorithm vanbroup | 12/30/08

Thanks for the links. happy

(nt) V@... | 12/30/08

YES!....TYVM! JCitizen | 12/31/08

SSL not broken... just Cert trust is broken Chucks_net | 12/30/08

I was just looking at stuff myself kokuryu | 12/30/08

1f82a5fd55b8a75e47d36d55c72aac77 nt T1Oracle | 12/31/08

Not that smart then, eh? nt T1Oracle | 01/01/09

"so what" dept mike acker | 12/30/08

Well as soon as Microsoft removes the... mrlinux | 12/30/08

All OSes have some sort of start-up auto-run. jamesrayg | 08/19/09

Missing the point... techboy_z | 12/30/08

Absolutely Chucks_net | 12/30/08

Amen and Hallelujah!! Seamus O'Brog | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions JelMin | 12/31/08

From the Briefing.. TechBoyZ | 12/31/08

So, should I or should I not issue the order? ksheppard@... | 12/31/08

Move to another authority... LiquidLearner | 12/31/08

"Just move to Verisign?" alun@... | 01/02/09

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions tomalak | 12/31/08

What are the "political issues" mentioned softwareFlunky | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions dreampod | 12/31/08

That is just it... JCitizen | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions vilppuu@... | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions hammer90 | 12/31/08

Later this year? rcasha_z | 12/31/08

BACK TO BASICS? wwwsupport | 12/31/08

criminals dcdavy | 12/31/08

Yeah, Yeah,...(Snore) Seamus O'Brog | 12/31/08

'Wine Arbitrage' link M.W.H. | 12/31/08

yeah... they broke the law doing "research" aswarm@... | 12/31/08

I Think You Miss The Point Even While Making It Seamus O'Brog | 12/31/08

SSL, Certs not broken - MD5 is! SnoBoy | 12/31/08

Found Official Response From Trustico ian.dell | 12/31/08

Perhaps... JCitizen | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions raelalt | 12/31/08

Where the hell did they find 200 playstations? Anonymous Benefactor | 12/31/08

Silicon Valley Day Care Center. Very Common There. (no Msg) Seamus O'Brog | 12/31/08

Why don't they just... Spiritusindomit@... | 12/31/08

Are you that simple minded? flyswat27 | 12/31/08

Misunderstanding the whole concept. Timewellwasted | 12/31/08

Yep! we need people like that to discover the flaws. V@... | 12/31/08

When billions of dollars are missing??? psquare11 | 12/31/08

Depends on what security exploitation... Timewellwasted | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions GavinS | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions MrViklund | 12/31/08

The PS3... LapDRx | 12/31/08

Sony and hacking oregonnerd13 | 12/31/08

rootkits were on Music CDs Timewellwasted | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions Questor333 | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions twaynesdomain | 12/31/08

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions trm1945 | 12/31/08

This was done as far back as 2005 georgeou | 12/31/08

Hackers aren't limited to 300 PS3s darkonc | 12/31/08

This Goes Beyond Simple Phishing. darkonc | 12/31/08

SSL is NOT Broken! mejohnsn | 01/01/09

200 ps3 vs bit strenght boredsillyinedu | 01/01/09

PS3 useful se_lain@... | 01/03/09

Nothing new Vektor_ | 01/06/09

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions jhamel@... | 01/21/09

RE: jason12343 | 07/22/09

RE: SSL broken! Hackers create rogue CA certificate using MD5 collisions jessonerik | 08/23/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

The Impact of Virtualization Software on Operating Environments VMware Today's use of virtualization technology allows IT professionals to ... Download Now
Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now
Virtualization: Architectural Considerations And Other Evaluation Criteria VMware Of the many approaches to x86 systems virtualization available in the ... Download Now

Read the original story

SSL broken! Hackers create rogue CA certificate using MD5 collisions

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors

Popular Sanity Saver Videos

Blogs

Product Reviews

Videos

White Papers and Webcasts

Downloads

More

ZDNet News & Blogs

Product Reviews

Product Blogs

White Papers & Webcasts

Downloads