The impact of the infiltrated DigiNotar system began to spread, threatening many other major systems in the world - Artwork: Internet
In a new hacker statement, the code name Comodohacker is broadcast from Pastebin website, the network service provider (ISP) systems in European countries, the US and Israel will be the next target.
Comodohacker said he had stolen sensitive data including customer information from four other digital security certification service providers. Specifically, StartCom in Israel and US-based GlobalSign.
" I have all emails, backup databases, customer data . " when this hacker mentioned StartCom and GlobalSign it was even more dangerous "I have access to their entire server, capture the backup database and even own the security key for the globalsign domain Their .com ".
On August 30, DigiNotar, one of hundreds of companies with the authority to provide certification of the funds used to authenticate a website, admitted the system was compromised a few weeks earlier and hackers stole 531. Digital certificates include many deeds used by the Dutch government.
The attacker who bears the alias Comodohacker also details the attack on the DigiNotar system even though it has multiple layers of security including security solutions from the armature and token management system (security code Random) provided by RSA and Thale.
According to the latest announcement called " Black Tulip ", a study by Fox-IT, a judicial firm is investigating the incident about DigiNotar, all DigiNotar systems are on a single Windows name. The way hackers take control of domain names and approach all digital security authentication servers is published. In particular, Fox-IT emphasizes a rather "weak" administrative password and can easily use brute-force unlocking mechanism (detect each password character through a dictionary of words).
Artwork: Internet
The Dutch government has officially imposed an order to control all activities of DigiNotar. At the same time, software companies whose products are related to incidents are quickly launched.
Software company Microsoft has released KB 2607712 patch for users of Internet Explorer web browser on Windows.
According to Microsoft, Windows versions affected by DigiNotar security issues include versions from Windows XP SP3, Server 2003 SP2, Vista SP2, Server 2008 SP2, Server 2008 R2 and Windows 7. For each Windows version Specifically, readers can download the corresponding update here or update automatically through the Windows Update function.
The list of DigiNotar digital certificates removed for IE in the update includes: DigiNotar Root CA, DigiNotar Root CA G2, DigiNotar PKIoverheid CA Overheid, DigiNotar PKIoverheid CA Organisatie - G2, DigiNotar PKIoverheid CA Overheid en Bedrijven.
Mozilla released Quick Update 6.0.2 and 3.6.22 for FireFox on all platforms including Windows, Linux, Mac and Android. Readers can download it here.
Although last August, FireFox released version 6.0.1 and 3.6.21 to remove the "dangerous" digital security certificates of DigiNotar, but the company was not wary of deeds from Staat der Nederlanden. originally believed to be unaffected by the DigiNotar incident.
Users of Chrome browsers can download version 14.0.835.126 Beta here.
Worryingly, Apple has not made any move for its Safari browser to respond to DigiNotar's "dangerous" digital security certificates in the hands of hackers.