Akamaiは、CryptoAPIの脆弱性を利用したサイバー攻撃のPoCを公開した。同脆弱性を悪用すれば、なりすましが可能になるとされており、Windows 7などの古いバージョンに対しても修正パッチの適用が必要だと注意を喚起している。 この記事は会員限定です。

Akamai Technologiesは1月25日(米国時間)、「Exploiting a Critical Spoofing Vulnerability in Windows CryptoAPI｜Akamai」において、Windows CryptoAPIの重大な脆弱性に対する概念実証(PoC: Proof of Concept)をリリースしたと伝えた。この脆弱性は米国家安全保障局(NSA: ...

Proof of concept exploit code has been released by Akamai researchers for a critical Windows CryptoAPI vulnerability discovered by the NSA and U.K.'s NCSC allowing MD5-collision certificate spoofing.

MS09-056 addresses two vulnerabilities that affect how the Windows CryptoAPI parses X.509 digital certificates. Applications on the Windows platform as well as Windows components such as the WinHTTP ...

Most Windows-powered datacenter systems and applications remain vulnerable to a spoofing bug in CryptoAPI that was disclosed by the NSA and the UK National Cyber Security Center (NCSC) and patched by ...

Since 2013, PixelPlex — an experienced blockchain company— has been providing full-stack blockchain development services. It’s been assisting both giant businesses and startups in unleashing their ...

AI has emerged as a potent weapon in cybersecurity. Learn how to best safeguard your organization. The CISO’s Guide: Transitioning from VPN to Comprehensive ZTNA Modernize secure access and eliminate ...

WTF?! Akamai has unveiled a new security threat to Windows-based servers and data center machines based on a dangerous bug Microsoft fixed months ago. However, it seems almost no one bothered to ...