A Google engineer who connected to in-flight Wi-Fi service Gogo was surprised when she noticed that her browser was using a spoof SSL certificate... for Google.
Showing results 1 to 20 of 43
UPDATED. Google is consciously using their influence to push certificate authorities to advance security standards soon. Would you believe the problem is Windows XP SP2?
UPDATED. A security advisory from Microsoft includes more detail on the breach of an Indian government certificate authority announced by Google yesterday.
There's a dirty little industry secret: The classic methods of certificate revocation don't really work. That's why Google Chrome doesn't do certificate revocation checking the normal way.
The certificate authority which issued unauthorized certificates for Google domains issues a lame explanation which only makes the incident more suspicious.
Microsoft acknowledges Google's report yesterday that an improper subordinate of root-trusted certificate authority, owned by the French government, falsely issued certificates for Google and others. Microsoft has taken action and given advice.
Always a leader in advancing SSL security, Google will be flagging certificates that don't meet the Baseline Requirements of the CA/Browser Forum, and adding requirements for Certificate Transparency.
Sponsored by Sap
Fuhu Inc., the Los Angeles startup behind the $199 Nabi childrens' tablet with Google Nexus guts, is suing former partner Toys "R" Us, which plans to launch its own competing Tabeo tablet next month.
A hacker managed to get into a GlobalSign server and compromise the company's digital certificate due to a piece of unpatched open source software on the server, according to a C-Level member of GlobalSign staff.The code had not been updated as it was not included on lists of proprietary software to be patched, the senior GlobalSign staff member told ZDNet UK on Wednesday.
The "ComodoHacker", who in September claimed that he had compromised Certificate Authority (CA) GlobalSign, appears to have had his exploits verified by the company — only he likely hit the wrong machines.
GlobalSign admitted that though its public-facing website was hacked, leading to its own SSL certificates being revoked, its secure certificate infrastructure remained unharmed.
Google Wallet starts to go big with a major retail partner: Gap, Inc.
GlobalSign is to resume issuing SSL-website certificates, after the certificate authority said that hackers had breached one of its web servers.
The hacker that compromised the Comodo, DigiNotar and StartCOM Certificate Authorities (CA), and caused GlobalSign to stop issuing certificates, has said that more attacks will come, and that he will publicly release customer data that he has collected from the hacked CAs.
Up to 300,000 Iranian people may have had their Gmail and Google services accounts compromised as a result of an attack on Dutch digital certificate company DigiNotar, according to a report
Google, Mozilla and Microsoft have banned the DigiNotar Certificate Authority in their browsers.
Over 500 stolen SSL certificates from a Dutch certificate authority also appear to have stung Facebook, Google and Windows Update, as well as MI6 and CIA websites.
Google, Mozilla and Microsoft have rushed to strengthen protections against an attack that used a fraudulent SSL certificate to fool people into thinking they were using Google.com
The hacker allegedly responsible for stealing digital certificates from Comodo has said that further certificate authorities may have been hacked.
The hacker allegedly responsible for stealing digital certificates from Comodo has said that further Certificate Authorities (CAs) may have been hacked.