Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Attackers could use Internet route hijacking to get fraudulent HTTPS certificates.

Attackers could use Internet route hijacking to get fraudulent HTTPS certificates.

2015/08/06

IDG News Service - (International) Security researchers at Black Hat 2015 highlighted the threats posed by Border Gateway Protocol (BGP) hijacking attacks, also known as route leaking, in which an attacker could tailor attacks to specific geographic regions by tricking a certificate authority (CA) into issuing a valid certificate for a domain name that they do not own.

Source: http://www.computerworld.com/article/2959542/security/attackers-could-use-internet-route-hijacking-to-get-fraudulent-https-certificates.html

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:24:55