Dutch KPN Certificate Authority Breached
Following Diginotar’s hack in September, another Dutch Certificate Authority has fallen victim to an attack. The CA, KPN, announced in a press release (in Dutch) that it has temporarily ceased releasing its certificates after discovering a DDoS tool on one of its servers. Although the tool may have been there for at least four years, the SSL certificates already issued remain valid.
Simultaneously, KPN has initiated an independent investigation involving experts from Logius, the digital government service of the Netherlands Ministry of the Interior and Kingdom Relations.
So far, no individual or group involved in hacking activities has claimed responsibility, which leaves room for even more speculation. Chances are that in this case the attackers are interested in compromising the certificates while also keeping a low profile, unlike Diginotar’s hack when the security breach was politically motivated to some extent.
Safe surfing everybody!
All product and company names mentioned herein are for identification purposes only and are the property of, and may be trademarks of, their respective owners.
Ultimate Privacy Guide for Your Facebook Account
August 31, 2021
7 Signs It’s Time to Use Parental Controls On Your Family’s Devices
August 27, 2021
Your Netflix Account May Be on Sale on Darkweb. Protect It
August 13, 2021
Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US
July 16, 2021
How to protect yourself against cyberstalking
July 06, 2021