---

Fraudulent SSL Cert for Google Revoked

“This week, certificate authority DigiNotar was found to have
issued a fraudulent SSL certificate for *.Google.com. The wildcard
certificate could have enabled an attacker to spoof any HTTPS
secured Google domain. Though advisories from browser vendors came
out this week, DigiNotar admitted today that it has been aware of
the issue for more than a month.

“On July 19th 2011, DigiNotar detected an intrusion into its
Certificate Authority (CA) infrastructure, which resulted in the
fraudulent issuance of public key certificate requests for a number
of domains, including Google.com,” DigiNotar’s parent company Vasco
said in a statement. “At that time, an external security audit
concluded that all fraudulently issued certificates were
revoked.”


Complete Story

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis