The name of the third certificate suggested it could also have been used for many different sensitive purposes, including securing the server that was compromised in the breach. Those certificates might be issued for other servers in NordVPN's network or for a variety of other sensitive purposes. Details of the breach have been circulating online since at least May 2018.īased on the command log, another of the leaked secret keys appeared to secure a private certificate authority that NordVPN used to issue digital certificates.
Attackers could have used the compromised certificate to impersonate the website or mount man-in-the-middle attacks on people visiting the real one. The key wasn't set to expire until October 2018, some seven months after the March 2018 breach.
One of three private keys leaked was used to secure a digital certificate that provided HTTPS encryption for. Hackers breached a server used by popular virtual network provider NordVPN and stole encryption keys that could be used to mount decryption attacks on segments of its customer base.Ī log of the commands used in the attack suggests that the hackers had root access, meaning they had almost unfettered control over the server and could read or modify just about any data stored on it.
0 kommentar(er)
