header-langage
简体中文
繁體中文
English
Tiếng Việt
한국어
日本語
ภาษาไทย
Türkçe
Scan to Download the APP

Security Product Leaks Instead: 360 Security Lobster Bundles HTTPS Wildcard Certificate Private Key into Local Directory

According to 1M AI News, a recent security product released by 360 called "Security Lobster" was found to have bundled the wildcard domain certificate and corresponding private key for *.myclaw.360.cn directly into the local installation directory. The Security Lobster's interface is based on a custom version of the 360 browser, accessed through the local address https://myclaw.360.cn:19798/. In order to achieve this local HTTPS connection, engineers included both the wildcard certificate and private key in the client.

This wildcard certificate covers all subdomains under myclaw.360.cn. In the event of a private key leak, a third party could forge an HTTPS encrypted connection under this domain. The certificate has not been revoked at this time. The 360 SRC team responded, stating that this is an internally known issue and is being addressed.

Source
举报 Correction/Report
On-Chain Activity
41min ago

A whale address withdrew 1938 BTC from Binance in the past 6 days

1h ago

A whale address transferred 12,000 ETH to FalconX

2h ago

"The Buddy" Goes Long 22 Bitcoins with 40x Leverage

3h ago

A whale has just withdrawn 413.7 BTC from Binance, after accumulating 2417 BTC over the past 41 days

24H Important News
2026-03-16
Bitmine (BMNR) Surges Over 11% During Intraday Trading
Analyst: Quarterly Options Positioning Highly Concentrated, $75,000 Emerges as Key Bull-Bear Battle Point
Driven by Geopolitical and Sporting Events, Predictive Market Industry Open Interest Surpasses $1 Billion for the First Time
A whale address withdrew 1938 BTC from Binance in the past 6 days
Correction/Report
Submit
Add Library
Visible to myself only
Public
Save
Choose Library
Add Library
Cancel
Finish
API 形状 warpcast