카자흐스탄, 강제로 모든 시민들의 HTTPS 인터넷 트래픽 가로 채기 시작

ment 7/20 '19 posted (7/20 '19 edited) 뉴스 IT

• "따라서 로컬 인터넷 사용자가 해커의 공격이나 불법 콘텐츠의 열람으로부터 보호되도록합니다. "

• 현재 카자흐스탄 시민들의 새로운 프라이버시 침해에 대해 주요 기술 회사 및 웹 브라우저가 어떻게 대응할지는 분명하지 않습니다.

• 이러한 진술에서 카자흐 정부는 시민들이 인터넷에서 볼 수 있는 내용을 통제하고 카자흐스탄을 심층 감시 상태로 전환하기를 원한다는 것을 분명히 합니다.

• "정부 발급 인증서를 설치해야하는 이유와 방법"에 대한 지침이있는 ISP가 만든 페이지와 보도 자료에서 잘못된 루트 인증서 설치의 위협에 대해 정확하게 설명하지 않습니다.

Kazakh government will intercept the nation’s HTTPS traffic [www.itpro.co.uk]

Kazakhstan Begins Intercepting HTTPS Internet Traffic Of All Citizens Forcefully [thehackernews.com]

Kazakhstan begins intercepting citizens' web traffic to 'protect them from cyber threats' [thenextweb.com]

Kazakhstan's government is intercepting all of its secure internet traffic [www.axios.com]

Kazakhstan government is now intercepting all HTTPS traffic [www.zdnet.com]

newest replies popular replies

Open Wiki - Feel free to edit it. -

7/20 '19 answered

Ironically, the KZ govt said this move was "aimed at enhancing the protection of citizens, government bodies and private companies from hacker attacks, Internet fraudsters and other types of cyber threats." pic.twitter.com/USYGxwqoLQ
— Catalin Cimpanu (@campuscodi) July 18, 2019

Kazakh ISPs are blocking users from accessing the intenet and redirecting them to pages with instructions on how to install the gov cert

Example: https://t.co/D3NiTWlNt0 or https://t.co/xsyD3FyiMo pic.twitter.com/iG5hEyKyLj
— Catalin Cimpanu (@campuscodi) July 18, 2019

If it hasn't already happened I expect to see:
1. A malicious / phishing copy of the messages to install a cert from the Kazakh gov
2. Compromise of the private key given many ISPs have a copyhttps://t.co/joDvfqZkCS
— Tom Sellers (@TomSellers) July 19, 2019

I'm now cancelling my upcoming trips to Kazakhstan...https://t.co/60YE9Rq6PV
— Jake Williams (@MalwareJake) July 19, 2019

They appear to be already using the cert, based on screenshots posted on Mozilla's bug tracker pic.twitter.com/siA6crbBsH
— Catalin Cimpanu (@campuscodi) July 18, 2019

Kazakh government first wanted to intercept all HTTPS traffic way back in 2016, but they backed off after several lawsuits from banks, ISPs, and foreign governments

They also tried to have their root CA added to Firefox, but Mozilla declined: https://t.co/NeFMaDP6yl
— Catalin Cimpanu (@campuscodi) July 18, 2019

After concluding spying on individual dissident's computers was too hard, Kazakhstan has decided to break https to spy on the entire internet instead: https://t.co/n06yMrJSqq
— Exploit Code Not People ? (@cooperq) July 19, 2019

Kazakhstan Begins Intercepting HTTPS Internet Traffic Of All Citizens Forcefully https://t.co/DErAiwfexK #CyberSecurity pic.twitter.com/6qFPOwCyKO
— Angelo G Longo (@aglongo) July 19, 2019

Kazakhstan Begins Intercepting #HTTPS Internet Traffic Of All Citizens Forcefully https://t.co/hTOY06i4Ml via @TheHackersNews
— Evarist Chahali (@Chahali) July 19, 2019

The Kazakhstan government makes it mandatory for citizens to install government-issued root certificates on their devices, intercepting citizens HTTPS internet traffic.#cybersecurity #Kazakhstan #https #stealthgroup https://t.co/RMF2RgeMgF
— Stealth-ISS Group (@stealth_iss) July 19, 2019

Kazakhstan Begins Intercepting HTTPS Internet Traffic Of All Citizens Forcefully https://t.co/WhFZiGuvKN
— Jacek Bartosiak (@BartosiakJacek) July 19, 2019

Kazakhstan Begins Intercepting HTTPS Internet Traffic Of All Citizens Forcefully https://t.co/lKhWNGxw1l via @TheHackersNews @PrivacyPros @Identiverse @idpro_org Worth reading the article - there’s an additional MITM attack vector due to the way the cert is being distributed.
— Andrew Hindle (@andrewhindle) July 19, 2019

Kazakhstan Begins Intercepting HTTPS Internet Traffic Of All Citizens Forcefully https://t.co/rzrFdowsgo
— Nicolas Krassas (@Dinosn) July 19, 2019

Some advice from our Chief Architect @stevenmccown If you ever have a pop-up ask to install a new root cert:
1. Click “No”
2. Leave the site you received the pop-up on
3. Clear your cachehttps://t.co/BxOnARkBLj
— Anonyome Labs (@AnonyomeLabs) July 19, 2019

Kazakhstan ISPs begin "forceful" interception of HTTPS Internet traffic for all its citizens, allowing Government to spy on them and censor online content.

ISPs forcing users into installing a Government-issued root certificate on their devices.

Read ➤ https://t.co/Fc1X2F3TDO pic.twitter.com/rR1MmZRdEw
— Mohit Kumar (@unix_root) July 19, 2019

Kazakhstan begins intercepting citizens' web traffic to 'protect them from cyber threats' https://t.co/ldly554A4V
— TNW (@thenextweb) July 19, 2019

Kazakhstan begins intercepting citizens' web traffic to 'protect them from cyber threats' https://t.co/7AwPBmcr0b
— TNW (@thenextweb) July 19, 2019

Kazakhstan —>
Intercepting citizen web traffic to “protect them from cyber threats” https://t.co/uWtXe06o65
— Kenneth Geers (@KennethGeers) July 19, 2019

Kazakhstan begins intercepting citizens' web traffic to 'protect them from cyber threats' https://t.co/P3TpZODv26
— TNW (@thenextweb) July 19, 2019

NEW: Kazakhstan government is now intercepting all HTTPS traffichttps://t.co/vcEzhp9oKd pic.twitter.com/IJSjHLiV2p
— Catalin Cimpanu (@campuscodi) July 18, 2019

Encryption keeps communication safe. Breaking it, like https://t.co/OVczykuG4r, means citizens cannot communicate securely with their bank, their doctor, or their emergency services.
— Andrew Sullivan (@SullivanISOC) July 19, 2019

Kazakhstan government is now intercepting all HTTPS traffic… ludilo mozga ? https://t.co/ntqJ99CcAI
— Slobodan Marković (@smarkovic) July 18, 2019

Kazakhstan government is now intercepting all HTTPS traffic - ZDNet https://t.co/Lfoh1Y4qDp via @nuzzel thanks @SeanWrightSec
— alexander knorr (@opexxx) July 19, 2019

Kazakhstan government is now intercepting all HTTPS traffic https://t.co/K7VoJYJTOD
— Evan Kirstel (@evankirstel) July 19, 2019

Kazakhstan government is now intercepting all HTTPS traffic. ALL traffic. https://t.co/AscF7z3Tpp
— Rickey Gevers (@UID_) July 18, 2019

The Kazakhstan government is making all ISPs force their users to install malicious CA certificates on their devices so they can intercept all HTTPS traffic in the country https://t.co/5EHniOEm26
— Micah Lee (@micahflee) July 19, 2019

permanent link

Open Wiki - Feel free to edit it. -

7/20 '19 answered

카자흐스탄, 강제로 모든 시민들의 HTTPS 인터넷 트래픽 가로 채기 시작 https://t.co/a5BhOmbLIu
• "정부 발급 인증서를 설치해야하는 이유와 방법"에 대한 지침이있는 ISP가 만든 페이지와 보도 자료에서 잘못된 루트 인증서 설치의 위협에 대해 정확하게 설명하지 않습니다.
— editoy (@editoy) July 20, 2019

ISPs in Kazakhstan are being instructed to force their users to install government-issued root certificates to allow the interception of encrypted https web traffic: https://t.co/SFyo3iSB6q
— Electrospaces (@electrospaces) July 20, 2019

#Kazakhstan Begins Intercepting HTTPS Internet Traffic Of All Citizens Forcefully https://t.co/hRfnS82asI #infosec #privacy
— Libitz ? (@lennylibitz) July 20, 2019

Nation In The Middle - https://t.co/jKW1n20rSo pic.twitter.com/weOYRYfxqK
— Patch Friday (@PatchFriday) July 20, 2019

Kazakhstan Begins Intercepting HTTPS Internet Traffic Of All Citizens Forcefully https://t.co/oXfkCWr3nT via @TheHackersNews
— Aryeh Goretsky (@goretsky) July 20, 2019

Kazakhstan Begins Intercepting HTTPS Internet Traffic Of All Citizens Forcefully https://t.co/97Cgd9rFLj #digitalCertificate #HTTPSencryption #HTTPSwebsite
via #TheHackersNews #CyberGuerrillA #BTC AdDreSs: 1Bhgvcsm3P59fSCLg5G6DSstpV4srk5JTy
— Gueux De Net (@Doemela_IX) July 19, 2019

Kazakhstan ISPs begin "forceful" interception of HTTPS Internet traffic for all its citizens, allowing Government to spy on them and censor online content.

ISPs forcing users into installing a Government-issued root certificate on their devices.

Read ➤ https://t.co/IZih0nLBRn pic.twitter.com/DiNK78qK9O
— Swati Khandelwal (@Swati_THN) July 19, 2019

Kazakhstan begins intercepting citizens' web traffic to 'protect them from cyber threats' https://t.co/niRlPT0a4s
— TNW (@thenextweb) July 20, 2019

Kazakhstan begins intercepting citizens' web traffic to 'protect them from cyber threats' https://t.co/2yv2Y09Yru
— TNW (@thenextweb) July 20, 2019

Kazakhstan begins intercepting citizens' web traffic to 'protect them from cyber threats' https://t.co/28VJDk9a0o
— TNW (@thenextweb) July 20, 2019

Kazakhstan begins intercepting citizens' web traffic to 'protect them from cyber threats' https://t.co/hwv3R1D1xX
— TNW (@thenextweb) July 20, 2019

#Kazakhstan is added to the list of growing countries now doing man-in-the-middle attacks against their citizens to “protect” them.https://t.co/3QQvuI6cf3
— wallofsheep (@wallofsheep) July 19, 2019

Kazakhstan government is now intercepting all HTTPS traffic! Citizens who access the internet since yesterday have been redirected to web pages that contained instructions on how to install the government's root certificate in their respective browsers https://t.co/AO9wLuCDOI pic.twitter.com/Q1gCAit1Dt
— ʜᴇɴᴋ ᴠᴀɴ ᴇss (@henkvaness) July 19, 2019

There is something terribly upsetting with this. Inserting certificates will break all trusted communication. That includes banking & trading (economic harm).

But also software updates; Once the device has been "infected" you cannot trust it any longer. https://t.co/h52ZYmi4JF
— Olaf Kolkman (@kolkman) July 19, 2019

カザフスタン政府がすべてのHTTPSを中継してトラフィックを監視。プライバシーを重視して通信を暗号化すると、攻撃者も動きやすくなるわけで、これは確かに有効ではあるけど、このあたりのバランスって難しい。実際IDS/IPSって50%程度しか監視できてないよね？https://t.co/KAHew7CB9d pic.twitter.com/nviDh8UIeo
— Koichi (@x64koichi) July 20, 2019

Kazakhstan government forcing a root CA onto all devices so it can read HTTPS traffichttps://t.co/MwbAfKRDkN
— Robin (@digininja) July 19, 2019

Kazakhstan government is now intercepting all HTTPS traffic https://t.co/BoBGUMJQTZ pic.twitter.com/p3btxRpiJb
— 420 Cyber, Inc. (@420Cyber) July 19, 2019

permanent link

Featured

Important Notice: Discontinuation of Our Wiki Service

Dear Valued Users,

We hope this message finds you well. We are writing to inform you of an important upcoming change to our services. After careful consideration and analysis, we have made the difficult decision to discontinue our wiki site, effective one month from 2024/04/30.

This was not an easy decision to make, as we understand the importance of the resources and community that have been built around our wiki. However, due to evolving market conditions and strategic realignments, we must redirect our resources and efforts towards other ventures that will allow us to serve you better in the future.

What This Means for You:

Access to Content: You will continue to have full access to all content on the wiki until the discontinuation date. We encourage you to save or migrate any content you wish to retain.
Final Date of Service: The wiki will become inaccessible starting 1st June 2024, after which all content will be permanently removed.

We are immensely grateful for the support and contributions of our user community throughout the years. The wiki is being retired, but our team will be back soon with new services and apps.

Thank you for being a part of our journey.

Warm regards,

editoy Inc.

Related

Featured