Bug hunter tricked SSL.com into issuing cert for Alibaba Cloud domain in 5 steps

2025-04-22 03:04

10 other certificates ‘were mis-issued and have now been revoked’

Certificate issuer SSL.com’s domain validation system had an unfortunate bug that was exploited by miscreants to obtain, without authorization, digital certs for legit websites.…

This article has been indexed from The Register – Security

Read the original article:

Bug hunter tricked SSL.com into issuing cert for Alibaba Cloud domain in 5 steps

← ISC Stormcast For Tuesday, April 22nd, 2025 https://isc.sans.edu/podcastdetail/9418, (Tue, Apr 22nd)

WinZip MotW Bypass Vulnerability Let Hackers Execute Malicious Code Silently →

10 other certificates ‘were mis-issued and have now been revoked’

Read the original article:

Related

Post navigation