Sign in / up

back to article NBD: Adobe just dumped its private PGP key on the internet

An absent-minded security staffer just accidentally leaked Adobe's private PGP key onto the internet. The disclosure was spotted by security researcher Juho Nurminen – who found the key on the Photoshop giant's Product Security Incident Response Team blog, ironically. That contact page should have only included the public PGP …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *

Page:

  1. DerekCurrie
    Facepalm

    There's Hacking. Then there's stupid.

    Who needs hackers when there are people with the keys to the kingdom that simply hand them over.

    Should we give up on computer security? Is this too beyond the ability of average human beings to comprehend? Should we call ourselves apes and go back to the jungle?

    No. I believe this is all about our continuing to live in The Dark Age of Computing. Let's hurry up the computer renaissance already! It's nowhere in sight.

    1 0 Reply
  2. Doctor Syntax Silver badge

    "Adobe has not returned a request for comment on the matter"

    Possible reason.

    Call from Adobe PR to tech suppert: "We've all been viewing this cat video someone emailed us and now our computers aren't working."

    1 0 Reply
  3. Mike Shepherd
    Meh

    Who copied whom?

    The article is very similar to this one. Neither acknowledges the other (or any common source). I thought the whole point of a link was that you didn't need to duplicate.

    0 0 Reply
  4. #define INFINITY -1

    I'm tempted to hit that down-arrow... but:

    diff -u el-reg-articles white-hat-crap

    - has not returned a request for comment on the matter,

    + has not answered a request for commentary on the matter,

    ...

    - moment. Namely, key rotation and internal public-private

    + moment. Namely, key turn and internal public-private

    \

    Make sense?

    0 0 Reply
  5. Velv
    Devil

    "Adobe has not returned a request for comment on the matter"

    Couldn't you just use the leaked private key to make up your own signed response???

    4 0 Reply
  6. EnviableOne
    FAIL

    And they continue ....

    Adobe is aware of the issue and has revoked the PGP key in question and published a new public and private key

    Someone should talk to their PR department about the difference between generating and publishing

    0 0 Reply

Page:

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like