funsec mailing list archives

RE: Sunbelt: Gromozon Malware Digitally Signed by Thawte

From: "Alex Eckelberry" <AlexE () sunbelt-software com>
Date: Wed, 12 Sep 2007 15:51:24 -0400

Yeah, I did 

-----Original Message-----
From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org]
On Behalf Of Larry Seltzer
Sent: Wednesday, September 12, 2007 3:26 PM
To: Paul Ferguson; funsec () linuxbox org
Subject: RE: [funsec] Sunbelt: Gromozon Malware Digitally Signed by
Thawte

Has anyone reported it to Thawte? 

VeriSign has a page on which you can rat out code-signing cert abusers:
https://www.verisign.com/support/code-signing-support/code-signing-misus
e/index.html

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blogs.eweek.com/cheap_hack/
Contributing Editor, PC Magazine
larry.seltzer () ziffdavisenterprise com

-----Original Message-----
From: funsec-bounces () linuxbox org [mailto:funsec-bounces () linuxbox org]
On Behalf Of Paul Ferguson
Sent: Wednesday, September 12, 2007 3:01 PM
To: funsec () linuxbox org
Subject: [funsec] Sunbelt: Gromozon Malware Digitally Signed by Thawte

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Wow.

It's stuff like this that sometimes makes you just throw your hands in
the air.

http://sunbeltblog.blogspot.com/2007/09/for-shame-thawte-trusts-gromozon
.ht
ml

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)

wj8DBQFG6DdXq1pz9mNUZTMRAumHAJ97UYYz2VHGjDJcWhZhevhYWv7FGgCgt7Zm
nT8Ek+UFs5/dQKHfWqbvAqI=
=TBtd
-----END PGP SIGNATURE-----

--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet  fergdawg(at)netzero.net
ferg's tech blog: http://fergdawg.blogspot.com/

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.

Current thread:

Sunbelt: Gromozon Malware Digitally Signed by Thawte Paul Ferguson (Sep 12)
- RE: Sunbelt: Gromozon Malware Digitally Signed by Thawte Larry Seltzer (Sep 12)
  - RE: Sunbelt: Gromozon Malware Digitally Signed by Thawte Alex Eckelberry (Sep 12)
- Re: Sunbelt: Gromozon Malware Digitally Signed by Thawte Valdis . Kletnieks (Sep 12)
  - RE: Sunbelt: Gromozon Malware Digitally Signed by Thawte Alex Eckelberry (Sep 12)
    - RE: Sunbelt: Gromozon Malware Digitally Signed by Thawte Alex Eckelberry (Sep 12)
    - Re: Sunbelt: Gromozon Malware Digitally Signed by Thawte Valdis . Kletnieks (Sep 14)
    - RE: Sunbelt: Gromozon Malware Digitally Signed by Thawte Larry Seltzer (Sep 14)