Collaborate Disseminate
Savitech provides USB audio drivers for a number of specialized audio products. Some versions of the Savitech driver package silently install a root CA certificate into the Windows trusted root certificate store. Continue reading VU#446847: Savitech USB audio drivers install a new root CA certificate
Certificate authority Let’s Encrypt said this week it will begin offering wildcard certificates in 2018.
Continue reading Let’s Encrypt to Offer Wildcard Certificates in 2018
Certificate authority Let’s Encrypt said this week it will begin offering wildcard certificates in 2018.
Continue reading Let’s Encrypt to Offer Wildcard Certificates in 2018
Symantec looks to be caving in its dispute with Google’s Chrome over the trustworthiness of digital certificates — which underlie the green padlock in the browser’s address bar that tells consumers it’s safe to bank or shop online. Chrome, citing what it says are repeated failures by Symantec to comply with the issuance rules regarding digital security certificates, last week threatened to stop fully trusting them. Chrome’s proposal demands that Symantec re-validate and re-issue the millions of certificates it’s created and would strip Symantec of the authority to issue extended validation, or EV, certificates at all. Because the proposal could mean Chrome users would no longer be able to shop or bank safely at many major e-commerce sites that currently use Symantec certificates, the proposal effectively challenged Symantec to a game of chicken. Over the weekend, Symantec blinked. In a blog post titled “A Message to our [Certificate Authority, or] CA Customers,” Symantec Senior Vice President and […]
The post Symantec says it will reissue digital certs distrusted by Chrome appeared first on Cyberscoop.
Continue reading Symantec says it will reissue digital certs distrusted by Chrome
The way Firefox caches intermediate CA certificates could allow for the fingerprinting of users and the leakage of browsing details, a researcher warns. Continue reading Intermediate CA Caching Could Be Used to Fingerprint Firefox Users
Google said that more than half of pageloads on Chrome across platforms are encrypted; Android as the lone laggard, but trending upward. Continue reading Half of Chrome Pageloads are HTTPS
Google announced Monday that it will distrust certificates issued by WoSign and StartCom when in it ships Chrome 56 in January 2017.
Continue reading Google to Distrust WoSign, StartCom Certs in 2017
Apple said over the weekend it would soon distrust certificates issued by WoSign’s Free SSL Certificate G2 intermediate CA on macOS. Continue reading Apple To Block WoSign Intermediate Certificates
Mozilla is finally planning to take action against the CA that signed a top-level Github certificate for a random user. Continue reading Mozilla to take action against WoSign’s woeful cryptographic blunders
A blundering Certificate Authority called “WoSign” is causing consternation amongst Mozilla’s security policy team. Continue reading How one man could have owned GitHub, and what happened next…