Google blacklists 247 certificates. Is it related to DigiNotar hacking incident? !!

[INDRANIL]

After yesterday's news concerning the fake certificate found in Iran that allowed an attacker to impersonate Google.com, Vasco, the parent company of certificate authority DigiNotar, released a statement explaining what happened.

As is usually the case with security incidents, the statement was light on details, but claims the certificate authority was hacked and certificates for a "number of domains" were signed by the hackers using their root certificate.

Certificate authorities are "trusted" entities who validate the certificates that allow people to create encrypted connections to web servers.

They are responsible for confirming the identity of the entity requesting a certificate so that people are unable to impersonate other people's servers.

DigiNotar discovered they were hacked on July 19th, but the intrusion began at least as early as July 10th, 2011.

They performed an audit and revoked what they thought were all of the fraudulently issued certificates, but somehow missed one that was created to impersonate Google.

Read More .

[JayCub]

Now that is a major mistake and could cost Digitor business, they where a bit slow finding they had been hacked and missed probably one of their biggest clients.. the directors at Vasco must be livid.

Thank you for sharing the news Indra as long as you don't have one of the dodgy certs at the bank of Indra we are laughing

[Bearcat]

Thank you for sharing the news Indra as long as you don't have one of the dodgy certs at the bank of Indra we are laughing

The bank of Indra has the best security measures in the world Jay. I have that on good authority from the President and CEO himself!

[INDRANIL]

Welcome . No I've updated all the certs in my Bank . Have a nice time .

[Stranger]

Google is doing waht they want in the cyberspace after all they are dominating this part of the world