Kakunin extends Google’s SPIFFE-based Agent Identity with cryptographic X.509 compliance certificates

Kakunin extends Google's SPIFFE-based Agent Identity with cryptographic X.509 compliance certificates and WORM audit ...
Bleeping Computer

X.509 Certificates Can Be Abused for Data Exfiltration

Researchers say that threat actors looking for a covert channel for stealing data from a firewalled network can abuse X.509 certificates to hide and extract data without being detected. X.509 is just ...
Dark Reading

Abusing X.509 Digital Certificates for Covert Data Exchange

Researchers at Fidelis Cybersecurity have identified a new technique that attackers can potentially employ for covertly exchanging data using X.509 digital certificates. The method builds on previous ...