Vulnerability from 1998 back in service - meet ROBOT
A recent scan of sites from the top 100 in terms of attendance revealed that 27 of them, including Facebook and PayPal, contained a vulnerability very similar to SSL discovered by explorer Daniel Bleichenbacher in 1998 . An error in the RSA key management algorithm made it possible to decrypt data using certain requests without an encryption key. The vulnerability in the algorithm was not fixed, but some workarounds were introduced that closed the vulnerability.
After 19 years, the researchers again used a similar attack and found that about 2.8% of the sites in the first million are vulnerable. Also vulnerable were the software products of many manufacturers and some open source projects. The list can be found in this article:VERT Threat Alert: Return of Bleichenbacher's Oracle Threat (ROBOT) .
The new vulnerability was named ROBOT - short for "Return Of Bleichenbacher's Oracle Threat."
Due to the complexity of its use (the attacker needs to make thousands of connections to the vulnerable site), the vulnerability is less dangerous than the famous Heartbleed, but still requires immediate attention. It is recommended that you check your sites using The ROBOT Check and update the software. And in the long run, stop using RSA keys and start using the Elliptic-Curve Diffie-Hellman schemes.
Based on the article: 1998 attack that messes with sites' secret crypto keys is back in a big way
After 19 years, the researchers again used a similar attack and found that about 2.8% of the sites in the first million are vulnerable. Also vulnerable were the software products of many manufacturers and some open source projects. The list can be found in this article:VERT Threat Alert: Return of Bleichenbacher's Oracle Threat (ROBOT) .
The new vulnerability was named ROBOT - short for "Return Of Bleichenbacher's Oracle Threat."
Due to the complexity of its use (the attacker needs to make thousands of connections to the vulnerable site), the vulnerability is less dangerous than the famous Heartbleed, but still requires immediate attention. It is recommended that you check your sites using The ROBOT Check and update the software. And in the long run, stop using RSA keys and start using the Elliptic-Curve Diffie-Hellman schemes.
Based on the article: 1998 attack that messes with sites' secret crypto keys is back in a big way