all InfoSec news
Messaging Service Wiretap Discovered through Expired TLS Cert
Schneier on Security www.schneier.com
Fascinating story of a covert wiretap that was discovered because of an expired TLS certificate:
The suspected man-in-the-middle attack was identified when the administrator of jabber.ru, the largest Russian XMPP service, received a notification that one of the servers’ certificates had expired.
However, jabber.ru found no expired certificates on the server, as explained in a blog post by ValdikSS, a pseudonymous anti-censorship researcher based in Russia who collaborated on the investigation.
The expired certificate was instead discovered on a …
attack cert certificate certificates covert expired expired certificates found jabber man-in-the-middle man-in-the-middle attacks messaging notification privacy russian server servers service story surveillance tls tls certificate wiretap xmpp