id	author	title	date	pages	extension	mime	words	sentences	flesch	summary	cache	txt
www-zdnet-com-2038		Microsoft warns about two apps that installed root certificates then leaked the private keys | ZDNet			.html	text/html	1491	187	72	Microsoft warns about two apps that installed root certificates then leaked the private keys | ZDNet Microsoft has issued a security advisory today warning that two applications accidentally installed two root certificates on users' computers, and then leaked the private keys for all. The issue with the two HeadSetup apps came to light earlier this year when German cyber-security firm Secorvo found that versions 7.3, 7.4, and 8.0 installed two root Certification Authority (CA) certificates into the Windows Trusted Root Certificate Store of users' computers but also included the private keys for all in the SennComCCKey.pem file. In researchers' own words "every system on which HeadSetup [...] was installed at any time in the past [...] remains vulnerable" until users manually review the Trusted Root Certificate Store and remove the two certificates, or until the certificates expire --which could be January 13, 2027, or July 27, 2037, respectively.	./cache/www-zdnet-com-2038.html	./txt/www-zdnet-com-2038.txt