Fraudulent Certificates Could Allow Spoofing


Microsoft warned that COMODO issued 9 fraudulent certificates to a third party whose identity was not sufficiently validated. These fraudulent certificates could be used to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all web browser users.

According to Microsoft Security Advisory, the followig web properties are affected:

  • login.live.com
  • mail.google.com
  • http://www.google.com
  • login.yahoo.com (3 certificates)
  • login.skype.com
  • addons.mozilla.org
  • “Global Trustee”

If you are a Windows user, you should be aware of that the products in the list are affected. You need to install the corresponding security package immediately.

image

Advertisements

One thought on “Fraudulent Certificates Could Allow Spoofing

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s