Hi, Some of you may remember the discussion about embedded private keys in Blizzard's battle.net software here: https://groups.google.com/forum/#!msg/mozilla.dev.security.policy/pk039T_wPrI/VYi629oGCwAJ
One of the certificates with a compromised key back then was issued by Digicert: https://crt.sh/?id=287530764 I noticed that a new certificate for a different domain, but with that same private key has been issued: https://crt.sh/?id=638323656 I tried to report it to rev...@digicert.com - but that address was replying with an error message... -- Hanno Böck https://hboeck.de/ mail/jabber: ha...@hboeck.de GPG: FE73757FA60E4E21B937579FA5880072BBB51E42 _______________________________________________ dev-security-policy mailing list dev-security-policy@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security-policy