lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date: Thu, 8 Sep 2011 11:55:16 -0500
From: adam <adam@...sy.net>
To: JT S <whytehorse@...il.com>
Cc: full-disclosure@...ts.grok.org.uk
Subject: Re: Western Union Certificate Error

Enough about Western Union, let's hear about what's in that *ass* folder.

On Wed, Sep 7, 2011 at 9:40 AM, JT S <whytehorse@...il.com> wrote:

> I recently got this error "You attempted to reach
> www.westernunion.com, but instead you actually reached a server
> identifying itself as wumt.westernunion.com. This may be caused by a
> misconfiguration on the server or by something more serious. An
> attacker on your network could be trying to get you to visit a fake
> (and potentially harmful) version of www.westernunion.com. You should
> not proceed."
> Attached is a screenshot of the error and certificate info. SHA-256=9F
> 26 1E 37 F3 6A 34 88 AD 65 54 88 E0 5C 8A 13
> C6 69 D4 FE 2A 25 0F DA 2C 51 13 1E 08 F8 DA 6F
>
> Cert was issued by Comodo
>
> A google of the SHA comes up with ICANN but other sites come up with
> nothing... And then I read from comodo themselves they got breached
> and fraudulent certs were issued...
> http://www.comodo.com/Comodo-Fraud-Incident-2011-03-23.html
>
>
> CONFIDENTIALITY NOTICE This E-Mail transmission (and/or the documents
> accompanying it) is for the sole use of the intended recipient(s) and
> may contain information protected by the attorney-client privilege,
> the attorney-work-product doctrine or other applicable privileges or
> confidentiality laws or regulations. If you are not an intended
> recipient, you may not review, use, copy, disclose or distribute this
> message or any of the information contained in this message to anyone.
> If you are not the intended recipient, please contact the sender by
> reply e-mail and destroy all copies of this message and any
> attachments.
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>

Content of type "text/html" skipped

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ