Microsoft warned that COMODO issued 9 fraudulent certificates to a third party whose identity was not sufficiently validated. These fraudulent certificates could be used to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all web browser users.
According to Microsoft Security Advisory, the followig web properties are affected:
- login.yahoo.com (3 certificates)
- “Global Trustee”
If you are a Windows user, you should be aware of that the products in the list are affected. You need to install the corresponding security package immediately.