๐จ critical ๐ Cryptographic Nightmares
aicompass.co.uk
Published both public AND private RSA keys to DNS
;; QUESTION SECTION:
;aicompass.co.uk. IN TXT
;; ANSWER SECTION:
aicompass.co.uk. 3600 IN TXT "-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNA...[REDACTED] -----END PUBLIC KEY----- -----BEGIN RSA PRIVATE KEY----- MIICXAIBAAKBgQC...[REDACTED FOR SAFETY] -----END RSA PRIVATE KEY-----"
What Happened
In a catastrophic security blunder, aicompass.co.uk published both their BEGIN PUBLIC KEY and BEGIN RSA PRIVATE KEY to the global DNS network. Anyone in the world could query these records and retrieve the private key. The key has been redacted below.
Full TXT Record Value
-----BEGIN PUBLIC KEY-----
MIGfMA0GCSqGSIb3DQEBAQUAA4GNA...[REDACTED]
-----END PUBLIC KEY-----
-----BEGIN RSA PRIVATE KEY-----
MIICXAIBAAKBgQC...[REDACTED FOR SAFETY]
-----END RSA PRIVATE KEY-----