Comodo SSL fail - part 2

Tags:

More on Comodo as it seems that there was another attempt to generate more SSL certs. Very interesting is that COMODOHACKER explains him/her.self via the copy pasting site. Some interesting details were shared like: I hacked Comodo from InstantSSL.it, their CEO's e-mail address mfpenco@mfpenco.com Their Comodo username/password was: user: gtadmin password: globaltrust Their DB name was: globaltrust and instantsslcms You have to admit that with a password like that... . you can be sure they mean business. (and by that I mean none of my business).

Anyway, it has been confirmed that this person is indeed responsible (at least partially) for this nice demonstration by errata security.

I'll just say it again, when will we all agree that the business of signing SSL certificates is just a bunch of bullshit ?