topic Is DarkMatter an evil spying empire? in Tech Talk https://community.isc2.org/t5/Tech-Talk/Is-DarkMatter-an-evil-spying-empire/m-p/25327#M1531 <P>Mozilla says they will no longer trust root certificates from the UAE firm <A href="https://www.darkmatter.ae/" target="_blank" rel="noopener">DarkMatter</A>, ending&nbsp;months of discussion (in Google groups <A href="https://groups.google.com/forum/#!msg/mozilla.dev.security.policy/nnLVNfqgz7g/TseYqDzaDAAJ" target="_blank" rel="noopener">here</A>) trying to stay white-listed in Firefox. They have contributed to&nbsp;<A href="https://www.darkmatter.ae/press-release/darkmatter-group-analysis-of-major-uae-data-leak/" target="_blank" rel="noopener">exposing APT34</A> and other threats. Are they evil? <A href="https://theintercept.com/2019/06/12/darkmatter-uae-hack-intercept/" target="_blank" rel="noopener">The Intercept</A> seems to think so.</P><P>&nbsp;</P><P>On a side note have you wondered about how many CA certificates are included in a <A href="https://curl.haxx.se/docs/caextract.html" target="_blank" rel="noopener">Mozilla bundle</A>? If you are building/delivering a software platform then you need to keep your <STRONG>cacert.pem</STRONG> up-to-date!</P><P>&nbsp;</P><P>Date&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;Certificates</P><TABLE><TBODY><TR><TD><A href="https://curl.haxx.se/ca/cacert-2019-05-15.pem" target="_blank" rel="noopener">2019-05-15</A></TD><TD>140</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2019-01-23.pem" target="_blank" rel="noopener">2019-01-23</A></TD><TD>135</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-12-05.pem" target="_blank" rel="noopener">2018-12-05</A></TD><TD>128</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-10-17.pem" target="_blank" rel="noopener">2018-10-17</A></TD><TD>129</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-06-20.pem" target="_blank" rel="noopener">2018-06-20</A></TD><TD>132</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-03-07.pem" target="_blank" rel="noopener">2018-03-07</A></TD><TD>133</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-01-17.pem" target="_blank" rel="noopener">2018-01-17</A></TD><TD>138</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2017-09-20.pem" target="_blank" rel="noopener">2017-09-20</A></TD><TD>143</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2017-06-07.pem" target="_blank" rel="noopener">2017-06-07</A></TD><TD>155</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2017-01-18.pem" target="_blank" rel="noopener">2017-01-18</A></TD><TD>158</TD></TR></TBODY></TABLE> Mon, 15 Jul 2019 17:57:44 GMT AppDefects 2019-07-15T17:57:44Z Is DarkMatter an evil spying empire? https://community.isc2.org/t5/Tech-Talk/Is-DarkMatter-an-evil-spying-empire/m-p/25327#M1531 <P>Mozilla says they will no longer trust root certificates from the UAE firm <A href="https://www.darkmatter.ae/" target="_blank" rel="noopener">DarkMatter</A>, ending&nbsp;months of discussion (in Google groups <A href="https://groups.google.com/forum/#!msg/mozilla.dev.security.policy/nnLVNfqgz7g/TseYqDzaDAAJ" target="_blank" rel="noopener">here</A>) trying to stay white-listed in Firefox. They have contributed to&nbsp;<A href="https://www.darkmatter.ae/press-release/darkmatter-group-analysis-of-major-uae-data-leak/" target="_blank" rel="noopener">exposing APT34</A> and other threats. Are they evil? <A href="https://theintercept.com/2019/06/12/darkmatter-uae-hack-intercept/" target="_blank" rel="noopener">The Intercept</A> seems to think so.</P><P>&nbsp;</P><P>On a side note have you wondered about how many CA certificates are included in a <A href="https://curl.haxx.se/docs/caextract.html" target="_blank" rel="noopener">Mozilla bundle</A>? If you are building/delivering a software platform then you need to keep your <STRONG>cacert.pem</STRONG> up-to-date!</P><P>&nbsp;</P><P>Date&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;Certificates</P><TABLE><TBODY><TR><TD><A href="https://curl.haxx.se/ca/cacert-2019-05-15.pem" target="_blank" rel="noopener">2019-05-15</A></TD><TD>140</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2019-01-23.pem" target="_blank" rel="noopener">2019-01-23</A></TD><TD>135</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-12-05.pem" target="_blank" rel="noopener">2018-12-05</A></TD><TD>128</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-10-17.pem" target="_blank" rel="noopener">2018-10-17</A></TD><TD>129</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-06-20.pem" target="_blank" rel="noopener">2018-06-20</A></TD><TD>132</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-03-07.pem" target="_blank" rel="noopener">2018-03-07</A></TD><TD>133</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2018-01-17.pem" target="_blank" rel="noopener">2018-01-17</A></TD><TD>138</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2017-09-20.pem" target="_blank" rel="noopener">2017-09-20</A></TD><TD>143</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2017-06-07.pem" target="_blank" rel="noopener">2017-06-07</A></TD><TD>155</TD></TR><TR><TD><A href="https://curl.haxx.se/ca/cacert-2017-01-18.pem" target="_blank" rel="noopener">2017-01-18</A></TD><TD>158</TD></TR></TBODY></TABLE> Mon, 15 Jul 2019 17:57:44 GMT https://community.isc2.org/t5/Tech-Talk/Is-DarkMatter-an-evil-spying-empire/m-p/25327#M1531 AppDefects 2019-07-15T17:57:44Z