HP pulls certificate because blunder with trojan




HP end of the month draws a certificate that the company used to software, including sign. Drivers, Research shows that it was used to sign malicious software accidentally.

The certificate, which was used for older products, mainly administrators would have to admit that there has not been tampered with the software warranty. However, the American company discovered that the certificate “accidentally” was used to sign a trojan, as reported security journalist Brian Krebs on his blog.

Security company Symantec alerted HP on malware, after a computer of an employee of HP found the four year old trojan them had nested. Since the program was posing as another file, after which it was signed with the certificate. HP used the certificate until May 2010 for signing software.

According to HP was not cracked the certificate itself and the trojan never shipped to customers. That assures Brett Wahlin, who is responsible for the security of HP, Krebs. HP late October 21st withdraw the certificate by VeriSign, after which it must sign. Been software


In: News & Events Asked By: [15519 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »