Hack Obtains 9 Bogus Certificates for Prominent Websites

Thursday Mar 24th 2011 by Datamation.com Staff

A breach at Comodo Group has been traced to Iran.

Wired: Certificate authority Comodo Group has admitted that a hacker compromised its networks and gained certificates that would have allowed him to impersonate six domains: mail.google.com, www.google.com, login.yahoo.com, login.skype.com, addons.mozilla.org and login.live.com. Those certificates would have made it much easier for the hacker to steal users' login credentials or eavesdrop on their browsing. The attack came from an Iranian server, and the Comodo Group believes the Iranian government may have been behind the intrusion.

Comodo says that it discovered the problem and revoked the certificate "within hours."

Mobile Site | Full Site
Copyright 2017 © QuinStreet Inc. All Rights Reserved