C
Crion629
Guest
Just thought that I'd get the word out to people.
What is this about?: Comodo, a root level SSL certificate issuer, advised that they discovered that they had issued nine fraudulent SSL certificates.
What sites are affected?: The following sites were potentially affected
login.live.com
mail.google.com
www.google.com
login.yahoo.com (3 certificates)
login.skype.com
addons.mozilla.org
How does this affect me?: SSL is the security system used by HTTPS sites. This system is supposed to verify the content provider as trusted and prevent you from sending data to a source that you do not intend to. If you visited a site with fraudulent certificate, you could potentially have sent login information to another destination other than your intended one.
What can I do?: Make sure that you take the appropriate actions for the internet browsers that you use. Microsoft has issued a patch for Windows and IE. Mozilla has ensured that the latest versions of Firefox do not recognize the fraudulent certs. Basically, make sure that you have the latest patches.
Source: http://www.microsoft.com/technet/securi ... 24375.mspx
More info: http://www.zdnet.com/blog/security/micr ... ature-roto
What is this about?: Comodo, a root level SSL certificate issuer, advised that they discovered that they had issued nine fraudulent SSL certificates.
What sites are affected?: The following sites were potentially affected
login.live.com
mail.google.com
www.google.com
login.yahoo.com (3 certificates)
login.skype.com
addons.mozilla.org
How does this affect me?: SSL is the security system used by HTTPS sites. This system is supposed to verify the content provider as trusted and prevent you from sending data to a source that you do not intend to. If you visited a site with fraudulent certificate, you could potentially have sent login information to another destination other than your intended one.
What can I do?: Make sure that you take the appropriate actions for the internet browsers that you use. Microsoft has issued a patch for Windows and IE. Mozilla has ensured that the latest versions of Firefox do not recognize the fraudulent certs. Basically, make sure that you have the latest patches.
Source: http://www.microsoft.com/technet/securi ... 24375.mspx
More info: http://www.zdnet.com/blog/security/micr ... ature-roto
