07 September 2011

(In)security redux: Hundreds of SSL certificates faked | #diginotar #verisign #cyberwar

The news that hackers got the best of a Dutch company that issues digital security certificates for websites, affecting the CIA, Google, Facebook, Twitter and many others raises some key questions: Is it cyberwar? Was the Iranian government behind the attack? And can we trust SSL certificates again?

Last week, reports surfaced about Iranian users of Google's sites being affected by the attack on DigiNotar, carried out by hackers who issued fake digital security certificates. Yesterday, the Dutch government said the attack was more widespread, involving more than 500 faked certificates and affecting the websites of the CIA, the Israeli and British spy agencies, and of other well-known brands such as Yahoo, Microsoft, Mozilla and more.

Read full article: http://bit.ly/o9vBzx

No comments: