PrivacyDigest · @PrivacyDigest
525 followers · 1948 posts · Server mas.to#Microsoft Signing Key Stolen by #Chinese - #Schneier on #Security
Actually, two things went badly wrong here. The first is that #Azure accepted an expired signing key, implying a #vulnerability in whatever is supposed to check key validity. The second is that this key was supposed to remain in the the system’s #HardwareSecurityModule —and not be in software
#privacy #China #signingkey
https://www.schneier.com/blog/archives/2023/08/microsoft-signing-key-stolen-by-chinese.html
#signingkey #China #privacy #hardwaresecuritymodule #vulnerability #azure #security #schneier #chinese #Microsoft