Microsoft Security Update for Fraudulent SSL Certificates
Posted: Thu Mar 24, 2011 9:01 am
Bottom line: hackers (in Iran it seems) managed to get a hold of SSL certificates from Comodo for major sites like Skype & Google Mail and Mozilla.
Security update (which just revokes these certificates) here: http://www.microsoft.com/technet/securi ... 24375.mspx
It will also be included in Windows Update.
Firefox has it's own certificate authority and does not use Window's Cert store, so FF users need to upgrade FF to the latest version. 3.6.16 was released yesterday.
Back story here: http://www.bbc.co.uk/news/technology-12847072
Security update (which just revokes these certificates) here: http://www.microsoft.com/technet/securi ... 24375.mspx
It will also be included in Windows Update.
Firefox has it's own certificate authority and does not use Window's Cert store, so FF users need to upgrade FF to the latest version. 3.6.16 was released yesterday.
Back story here: http://www.bbc.co.uk/news/technology-12847072