GlobalSign says 'isolated' webserver was hacked
Web authentication authority GlobalSign, which voluntarily suspended operations last week while it investigated claims its security was breached, said it has uncovered evidence that one of its servers has been compromised. "The breached web server has always been isolated from all other infrastructure and is used only to serve …
This topic is closed for new posts.
and when they don't get their results back....
I hope they have the balls to delist all non-complying CA's.
Blacklist Em
If you accept their excuse today you'll be buying into the corporate double-speak that costs us all a lot of money and time. The browser companies should add them to the blacklist just as a point.
Re: Blacklist Em
GlobalSign seems to be doing a good job here, why blacklist them? Website is essentially a poster (or a shop front) - if someone paints grafitti over it it's annoying and probably means the owner should work a bit on security, but will happen from time to time. In Diginotar's case, attacker got crown jewels.
If you "Blacklist Em" in the absence of any proof that they've been compromised, you are helping someone you don't know implement a Denial of Service attack on loads of other people you don't know.
The message to the hackers should be "put up or shut up".
The title is not required but may contain letters and/or digits
The message to the hackers should be "put up or shut up".
Whilst I agree with your sentiment, the hackers I think might be disinclined to participate. :)
So....
Is 'isolated server' the new 'rogue reporter'???
Communication?
As someone who sells GlobalSign certificates, I'm really disappointed in them.
Yes, they started off by doing the right thing, but their communication has been non existent this week. First we were told systems back online on Monday, then Tuesday. So far, now being Wednesday, the system is still down and no official ETA has been given. In fact, they haven't even acknowledged that they missed their announced time yesterday.
I'll probably ditch them based purely on the communication breakdown.
This topic is closed for new posts.
