The Canadian Internet Registration Authority (CIRA) has learned the hard way that the M in MITM does not stand for moose. Canada’s DNS filtering application, designed to protect citizens from malware and phishing attacks, failed to validate the SSL certificate it receives when connecting to the application server. Consequently, all the traffic could be easily intercepted by an attacker.
recognize both excellence and incompetence in the field of information security