Another Comodo SSL registrar hacked

ComodoBR, the Brazilian partner of the Comodo Certificate Authority (CA), appears to have fallen victim to an attack. During the incident, parts of the company’s database, including customer data and submitted certificate requests, were accessed via SQL injection.

While the certificate requests don’t contain any information an attacker could misuse, the incident does present a serious security problem because the database records also contained the access credentials of ComodoBR employees. However, it remains unclear whether unauthorised third parties could have used this information to issue their own certificates. Back in March, a hacker had managed to exploit a vulnerability in the servers of an Italian Comodo partner to issue at least one certificate for an already existing domain, forcing browser developers to deploy an update that blocked those certificates.

Read more at H-online

Comments are closed.