7 votes

How Scott Helme revoked $1,000,000 worth of EV certificates

Tags: security

1 comment

  1. jmillikin
    (edited )
    Link
    The article links to https://gist.github.com/CBonnell/0f30bc3a7dd7399a575c837ebde2dd39, which has more fun entries with parsed.subject.jurisdiction_country:US: "https://crt.sh/?id=326540523...

    The article links to https://gist.github.com/CBonnell/0f30bc3a7dd7399a575c837ebde2dd39, which has more fun entries with parsed.subject.jurisdiction_country:US:

    • "https://crt.sh/?id=326540523 (precert); https://crt.sh/?id=331458487 (final)", 2018-02-09, 2020-02-09, www.yarnspirations.com, "DigiCert SHA2 Extended Validation Server CA", Manitoba
    • "https://crt.sh/?id=647468336 (precert); https://crt.sh/?id=743688200 (final)", 2018-08-13, 2020-08-17, maxilite.lighting, "DigiCert SHA2 Extended Validation Server CA", "British Columbia"
    • "https://crt.sh/?id=201823623 (precert); https://crt.sh/?id=201824526 (final)", 2017-08-30, 2019-08-30, alaskaautorental.com, "COMODO RSA Extended Validation Secure Server CA", "Outside United States"