MI6 targeted in DigiNotar hack

News
By published

MI6, the CIA and Facebook were all targeted following a hack on certificate authority DigiNotar.

Cyber war

UK intelligence body MI6 was one of over 500 organisations targeted by hackers who compromised certificate authority (CA) DigiNotar.

When DigiNotar confirmed it was hacked last week, it was believed only a handful of fake SSL certificates were issued. A list from the Dutch Government has shown 531 rogue certificates were actually issued, including one for MI6 website sis.gov.uk.

Other targeted sites included the CIA, Facebook, Google, Skype, Twitter and WordPress.

The Dutch Government confirmed it is looking into reports Iran was responsible for the hacks. The Dutch interior ministry said Government websites may not be safe due to the DigiNotar hack, according to the Daily Telegraph.

The consequences of the attack on DigiNotar will far outweigh those of Stuxnet.

"The damage sustained to the Dutch Government IT infrastructure is quite significant. A lot of services are no longer available," said Roel Schouwenberg, Kaspersky Lab expert, in a blog post.

"Effectively, communications have been disrupted. Because of this, one could make an argument the attack is an act of cyberwar."

He said any suggestion the Iranian Government was involved was "all speculation" right now.

"Any kind of hints found in the registered certificates could well be decoys. I remain with my stance that a government operation is the most plausible scenario," he added.

VASCO Data Security International, DigiNotar's parent company, said on Friday it wanted to work with the Dutch Government on identifying who was responsible.

"It is our firm belief that cooperating with VASCO is the right decision for the Dutch Government. We are convinced that together we will solve this issue," said Ken Hunt, VASCO's chairman and chief executive (CEO).

Schouwenberg also called on Apple to revoke affected CAs from its list of trusted services, as other tech giants like Google, Microsoft and Mozilla have done. DigiNotar may not be the only compromised CA "out there," the security expert warned.

Schouwenberg suggested the DigiNotar attack could be even more significant than the emergence of the highly sophisticated Stuxnet malware.

"The attack on DigiNotar doesn't rival Stuxnet in terms of sophistication or coordination," he said.

"However, the consequences of the attack on DigiNotar will far outweigh those of Stuxnet. The attack on DigiNotar will put cyberwar on or near the top of the political agenda of Western governments."

Tom Brewster
Tom Brewster

Tom Brewster is currently an associate editor at Forbes and an award-winning journalist who covers cyber security, surveillance, and privacy. Starting his career at ITPro as a staff writer and working up to a senior staff writer role, Tom has been covering the tech industry for more than ten years and is considered one of the leading journalists in his specialism.

He is a proud alum of the University of Sheffield where he secured an undergraduate degree in English Literature before undertaking a certification from General Assembly in web development.

HPE CTO Fidelma Russo speaking to CEO Antonio Neri and Nvidia CEO Jensen Huang at HPE Discover 2024, Las Vegas

Who is Fidelma Russo?
A mechanic in a garage cleaning her hands with a blue cloth

Cyber criminals widen the net to target tradespeople
The words 'Harnessing unstructured data to fuel AI' against a purple background and dissolving squares arranges in a circle to represent unstructured data. The words 'fuel AI' are yellow and the others are white. In the bottom left corner the Nasuni logo is shown and in the bottom right corner, the ITPro Podcast is shown.

Harnessing unstructured data to fuel AI
See more latest
Most Popular
A mechanic in a garage cleaning her hands with a blue cloth
Cyber criminals widen the net to target tradespeople
Red Ubuntu logo appearing on a web browser with a microscope over the logo, placing emphasis on it
Qualys discovers three bypasses of Ubuntu's unprivileged user namespace restrictions
Gold lock floating above a digitally rendered motherboard with blue and red glowing hues, denoting ransomware
Security researchers hack BlackLock ransomware gang in push back against rising threat actor
A busy customer service desk
Omnissa eyes growth with revamped partner program
Female software developer using AI coding tools on a desktop computer with light from screen reflecting in spectacles.
Developers spend 17 hours a week on security — but don't consider it a top priority
A close-up of a digital dashboard showing stock market graphs overlaid onto a world map.
Financial services firms look to AI to improve resilience
Male software engineer working on a laptop at a home office desk with two PC monitors sitting on top of desk.
‘This shift highlights not just a continuation but a broad acceptance of remote work as the norm’: Software engineers are sticking with remote work and refusing to budge on RTO mandates – and 21% would quit if forced back to the office
Ransomware concept image showing a warning symbol in red with binary code in background.
Healthcare systems are rife with exploits — and ransomware gangs have noticed
Application security concept image showing a digitized padlock placed upon a digital platform.
ESET looks to ‘empower’ partners with cybersecurity portfolio updates
Databricks logo and branding pictured on a MacBook Pro screen.
Databricks and Anthropic are teaming up on agentic AI development – here’s what it means for customers