Hacked: Hacking Finance

Study: Reused HTTPS Certificates & SSH Keys Put Millions of Devices at Risk

Introduction

Samburaj Das

Samburaj Das

Samburaj is the contributing editor at Hacked and keeps tabs on science, technology and cyber security.


LATEST POSTS

ChronoPay Looks to Kickstart Bitcoin Adoption in Russia 29th May, 2017

Alleged FBI Hacker Lauri Love Ordered to US Extradition by UK Home Secretary 15th November, 2016

Cybersecurity

Study: Reused HTTPS Certificates & SSH Keys Put Millions of Devices at Risk

Posted on .
This article was posted on Friday, 19:30, UTC.

A recent study by an independent security firm analyzing over 4000 embedded devices such as routers, modems, IP cameras, VoIP phones and IPs reveal an industry-wide practice of sharing the same HTTPS server certificates and Secure Shell Host (SSH) keys. According to a study conducted by researchers at security firm SEC Consult, vast swathes of shared HTTPS certificates and SSH keys could potentially allow malicious attackers to snoop in and listen in to encrypted traffic accessed by millions of devices and its users. Studying the firmware in over 4000 embedded devices across 70 vendors, the researchers specifically looked into cryptographic…

// -- Discuss and ask questions in our community on Workplace. Don't have an account? Send Jonas Borchgrevink an email -- //

To continue reading you need to be a Gold Member or Platinum Member. Let us help you become financially independent by signing up. You will get access to exclusive stories, analysis, and guides by experienced traders, economists, and entrepreneurs. Learn more about us here.

Log In Join Now for $39 a Month! OR Save $69 by Subscribing for a Year!

Important: Never invest money you can't afford to lose. Always do your own research and due diligence before placing a trade. Read our Terms & Conditions here.



Feedback or Requests?

Receive New Posts on Email:



Samburaj Das

Samburaj Das

Samburaj is the contributing editor at Hacked and keeps tabs on science, technology and cyber security.

Navigation
Nightline's Ted Koppel did something pretty interesting lately: sat down…