cybersecurity

4965 readers

26 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

shellsharks

tweedge

The number of mis-issued 1.1.1.1 certificates grows. Here’s the latest. (arstechnica.com)

submitted 1 week ago by cm0002@lemmy.world to c/cybersecurity

3 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] frongt@lemmy.zip 9 points 1 week ago

Nah. A CA that issues fraudulent certificates will have its signing certs revoked by the root CA.

But that requires actual fraud. This sounds like someone used 1.1.1.1 for testing, when they should have used 192.0.2.0/24 or something. That subnet is specifically reserved.

permalink
fedilink
source
parent