KPN, the website of its subsidiary Gemnet taken offline after it appeared that this hack was. Gemnet supported the requests of the PKI certificates for the government. KPN is investigating the leak.
The leak was discovered by a hacker that is opposite Webwereld says ‘to believe is not the first person who has obtained access to the systems’. KPN to let you know of the leak to investigate and as a precaution the site offline to have met. “It seems that the possible hack only the server concerned that the general information for visitors makes visible”, says KPN. Gemnet and in 2006 it was acquired by KPN. Before that it was a network company in the hands of the Association of Netherlands Municipalities and the Bank of Dutch Municipalities.
The error would have been situated near the webbeheertool for MySQL phpMyAdmin. This would without a password access to the database is granted. Then it was possible to documents on the web server and files, including executables. Journalist Brenno de Winter claims the documents on the server found to have information about the technical design of the confidential network between KPN and governments or companies.
It is unclear what are the consequences of a possible hack by a third party for the issuance of pki-overheidscertificaten. Earlier this year, was a leak in the issuance of certificates the end of the company DigiNotar. KPN itself ceased the issue of certificates at the beginning of november after a possible abuse of a web server of the subsidiary Getronics.
Update, 31 december 2011 17:41: Otherwise then in this article it was stated, is Gemnet no certificaatleverancier. Gemnet supported the application process for certificates, but did not itself.