7 matches found
Researchers: Weak Security Defaults Enabled Squarespace Domains Hijacks
At least a dozen organizations with domain names at domain registrar Squarespace saw their websites hijacked last week. Squarespace bought all assets of Google Domains a year ago, but many customers still havent set up their new accounts. Experts say malicious hackers learned they could commandee...
How Amazon Employee bought 'Google.com' Domain for Only $12 from Google
Difficult to believe this, as we hardly come across such news. But trust me, a person managed to buy no ordinary .com domain, but — Google.com and that too for one whole minute. Sanmay Ved, an ex-Google employee and current-Amazon employee, experienced something of a shock when he found that the...
Apple Leaves CNNIC Root in iOS, OSX Certificate Trust Lists
When it was revealed late last month that a Chinese certificate authority had allowed an intermediate CA to issue unauthorized certificates for some Google domains, both Google and Mozilla reacted quickly and dropped trust in CNNIC altogether, Apple has kept the root certificates in its trusted...
TURKTRUST Officials Say No Evidence of Malice in Certificate Incident
A week after the disclosure of the existence of a fraudulent certificate for Google domains that resulted from the mistaken issuance of a subordinate certificate by a Turkish certificate authority, officials at TURKTRUST are continuing to defend their actions in response to the incident, and say...
DigiNotar Says Its CA Infrastructure Was Compromised
VASCO, the parent company of DigiNotar, says that the fraudulent certificate for Google’s domains that the certificate authority issued was just one of many such bogus certificates it handed out in recent months, and blamed the growing scandal on an attack on its CA infrastructure. In a statement...
Iranian Man-in-the-Middle Attack Against Google certificate
Iranian Man-in-the-Middle Attack Against Google certificate Recently discovered attempts of an SSL man-in-the-middle attack against Google users - spotted by a number of Iranian Internet users - have revealed that Dutch Certificate Authority DigiNotar has issued an SSL certificate for all...
Attackers Obtain Valid Cert for Google Domains, Mozilla Moves to Revoke It
UPDATE: A certificate authority in the Netherlands issued a valid SSL wildcard certificate for Google to a third party in July, leading to concerns that attackers may have been using the certificate to route sensitive traffic through their own servers, capturing it and compromising user data in t...