Articles about diginotar

The Register breaking news

Experts: Firms need to come clean about cyber attacks

LCC Businesses need to ‘fess up when they’ve been the victims of cyber attacks, experts at the London Conference on Cyberspace (LCC) said today. Government and biz bosses said that even though companies didn’t really want to own up to having been breached, they needed to start sharing information with officials to protect critical …
The Register breaking news

DigiNotar goes titsup: Disgraced certificate firm is sunk

Disgraced digital certificate firm DigiNotar has filed for bankruptcy in The Netherlands. Hackers broke into DigiNotar's systems in June before creating forged digital certificates in the names of Google and other high-profile targets. The forged Google.com SSL credentials were used to spy on 300,000 Iranian internet users, …
John Leyden, 20 Sep 2011
The Register breaking news

GlobalSign says 'isolated' webserver was hacked

Web authentication authority GlobalSign, which voluntarily suspended operations last week while it investigated claims its security was breached, said it has uncovered evidence that one of its servers has been compromised. "The breached web server has always been isolated from all other infrastructure and is used only to serve …
Dan Goodin, 12 Sep 2011
The Register breaking news

Apple finally purges Mac OS of disgraced DigiNotar certs

Apple has finally purged the imprimatur of disgraced web authentication authority DigiNotar from its Mac operating system. In an update released Friday, Apple removed multiple DigiNotar root certificates from the Lion and Snow Leopard versions of Mac OS X. The move came nine days after the discovery that the Netherlands-based …
Dan Goodin, 9 Sep 2011
The Register breaking news

Google tells Iranians: Change your Gmail password

Google has issued a blanket instruction advising Iranian users to check if their Gmail accounts might have been hacked as well as to change their passwords. The move follows the compromise of Dutch SSL certificate authority DigiNotar. Hackers created fake SSL certificate credentials for Google.com and many other domains. These …
John Leyden, 9 Sep 2011
The Register breaking news

Burned by DigiNotar, Mozilla tells cert cops to audit security

Mozilla has directed all web authentication authorities trusted by its software to conduct security audits to ensure they aren't being abused to issue counterfeit secure sockets layer certificates. Thursday's note from Kathleen Wilson, who oversees the certificate authorities included in the Firefox browser and Thunderbird …
Dan Goodin, 8 Sep 2011
The Register breaking news

Google: SSL alternative won't be added to Chrome

Still smarting from a counterfeit secure sockets layer certificate that threatened at least 300,000 of its users in Iran, Google has no plans to fortify its Chrome browser with an experimental technology that bypasses the current system for validating websites. In a blog post published Wednesday, Google security researcher Adam …
Dan Goodin, 8 Sep 2011
The Register breaking news

DigiNotar hacker says he stole huge GlobalSign cache

An internet user with proven ties to the DigiNotar hack claims he stole email, customer data and other sensitive data from two competing web authentication authority that will be released publicly soon. In a statement posted Thursday, an individual calling himself Comodohacker expanded on previous claims that he breached the …
Dan Goodin, 7 Sep 2011
The Register breaking news

GlobalSign stops issuing SSL certs, probes hacker claims

GlobalSign has suspended the publication of SSL certificates as a precaution in the wake of unverified claims by a hacker linked to attacks on Comodo and DigiNotar. The self-named Comodohacker used pastebin in March to claim responsibility for hacks against Comodo that allowed the publication of bogus SSL certificates. The …
John Leyden, 7 Sep 2011
cable

iOS, Mac, Android users still vulnerable to bogus certs

Eight days after the discovery that a fraudulently issued web credential actively targeted Iranians as they accessed their Gmail accounts, millions of people who rely on Google and Apple products remain vulnerable to similar attacks. The inaction of Google in updating its Android operating system and Apple in making changes to …
Dan Goodin, 6 Sep 2011
The Register breaking news

Inside 'Operation Black Tulip': DigiNotar hack analysed

The Google webmail of as many as 300,000 Iranians may have been intercepted using fraudulently issued security certificates made after a hack against Dutch certificate authority outfit DigiNotar, according to the preliminary findings of an official report into the megahack. Fox-IT, the security consultancy hired to examine the …
John Leyden, 6 Sep 2011
The Register breaking news

Claimed DigiNotar hacker: I have access to four more CAs

The digital miscreant known as ComodoHacker has claimed responsibility for the high-profile DigiNotar digital certificate authority hack. Soon after the Comodo forged certificates hack an Iranian using the handle Comodohacker posted a series of messages via Pastebin account providing evidence that he carried out the attack. …
John Leyden, 6 Sep 2011
The Register breaking news

Dutch CA banished for life from Chrome, Firefox

The network breach in July that forged a near-perfect replica of a Google.com credential minted more than 200 other SSL certificates for more than 20 different domains, a top manager for Mozilla's Firefox browser said. In stern rebuke of substandard practices at Netherlands-based certificate authority DigiNotar, Director of …
Dan Goodin, 3 Sep 2011
The Register breaking news

Google might shun Dutch gov certificates from DigiNotar

Updated In the wake of hundreds of fraudulent secure sockets layer certificates issued by DigiNotar, Google developers are preparing a version of the Chrome browser that rejects some web credentials sanctioned by the Dutch government's official certificate authority. Source code posted Thursday afternoon California time on Google's own …
Dan Goodin, 2 Sep 2011
The Register breaking news

World ostracizes firm that issued bogus Google credential

A counterfeit credential authenticating Gmail and other sensitive Google services was the result of a network intrusion suffered by DigiNotar, the parent company of the Netherlands-based certificate authority said in a press release that raised disturbing new questions about security on the internet. Tuesday's disclosure by …
Dan Goodin, 30 Aug 2011

Create a news alert about diginotar, or find more stories about diginotar.

Biting the hand that feeds IT © 1998–2018