NordVPN, the virtual private network provider, today confirmed it was hacked through an expired, exposed, and outdated internal private key. VPN providers are becoming significantly popular due to providing security and are used frequently by users in hostile environments.
So apparently NordVPN was compromised at some point. Their (expired) private keys have been leaked, meaning anyone can just set up a server with those keys… pic.twitter.com/TOap6NyvNy
— undefined (@hexdefined) October 20, 2019
Experts Comments
Linkedin Message
@Grant McCracken, Director, Solutions Architecture, provides expert commentary at @Information Security Buzz.
"Nobody operates in or as a self-contained system...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/nordvpn-breach-how-bug-bounty-programs-can-help-and-resolve
Facebook Message
@Grant McCracken, Director, Solutions Architecture, provides expert commentary at @Information Security Buzz.
"Nobody operates in or as a self-contained system...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/nordvpn-breach-how-bug-bounty-programs-can-help-and-resolve
Be part of our growing Information Security Expert Community (1000+), please register here.
Linkedin Message
@Ted Shorter, CTO , provides expert commentary at @Information Security Buzz.
"A defense-in-depth strategy could have at least prevented the hackers from stealing the private keys...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/nordvpn-breach-how-bug-bounty-programs-can-help-and-resolve
Facebook Message
@Ted Shorter, CTO , provides expert commentary at @Information Security Buzz.
"A defense-in-depth strategy could have at least prevented the hackers from stealing the private keys...."
#infosec #cybersecurity #isdots
https://informationsecuritybuzz.com/expert-comments/nordvpn-breach-how-bug-bounty-programs-can-help-and-resolve