Security News

Week in review: Estonia blocks certificates on ID cards, Chrome extension steals all data
2017-11-06 01:45

Here’s an overview of some of last week’s most interesting news and articles: Chris Eng: An infosec journey from offense to defense “Come to my lab, I promise you’ll learn something cool,” a...

Estonia blocks certificates on 760,000 ID cards due to identity theft risk
2017-11-03 16:38

On 3 November 2017 at midnight, Estonia will block the certificates of 760,000 ID cards. The decision is the result of the discovery of a security vulnerability in the Infineon-developed RSA...

How much do criminals pay for certificates on the dark web?
2017-11-03 13:15

The Cyber Security Research Institute (CSRI) conducted a six-month investigation into the sale of digital code signing certificates on the dark web. The research uncovered code signing...

Savitech Audio Drivers Caught Installing Root Certificate
2017-11-03 10:24

Savitech drivers used by several companies that provide specialized audio products expose computers to hacker attacks by installing a new root certificate into the Trusted Root Certification...

Mozilla to Completely Ban WoSign, StartCom Certificates in Firefox 58 (Security Week)
2017-09-01 13:35

Mozilla this week announced plans to completely remove trust in the digital certificates issued by Chinese certificate authority WoSign and its subsidiary StartCom starting with Firefox 58.  read more

TrickBot Using Legitimate Looking Sites With SSL Certificates (Security Week)
2017-08-16 02:23

The TrickBot banking Trojan has been using legitimate SSL certificates alongside websites that closely resemble those of actual banks in recently observed attacks, security researchers warn. read more

Microsoft to Ban WoSign, StartCom Certificates (Security Week)
2017-08-08 14:58

Windows Will Not Trust New Certificates Issued by WoSign and StartCom After September 2017 Microsoft has finally announced its decision in the case of Chinese certificate authority (CA) WoSign and...

G Suite Admins Can Now Manage SAML Certificates (Security Week)
2017-08-03 12:02

Google on Wednesday announced that G Suite administrators are now able to directly manage X.509 certificates associated with their Security Assertion Markup Language (SAML) applications. read more

Symantec to Sell Certificate Business to DigiCert for $950 Million (Security Week)
2017-08-03 09:39

After reaching an agreement with Google regarding penalties for misissued digital certificates, Symantec announced on Wednesday that it has made a deal with DigiCert to sell its website security...

Google Wants Symantec Certificates Replaced Until Chrome 70 (Security Week)
2017-07-31 15:16

After several months of debate, Google has released its final proposal in the case of Symantec’s certificate authority (CA) business. All Symantec-issued certificates must be replaced by the time...