Microsoft Warns Of Fraudulent Verisign Certificates
Saw this over at SNN
According to Microsoft, someone posing as a Microsoft employee convinced VeriSign to issue two Level 3 code signing certificates in Microsoft's name on Jan. 30 and Jan. 31. Level 3 certificates are used to validate code used in software downloads, updates, and more. Microsoft now has to deal with the consequences of telling the world to not run code that has been signed with certificates that are issue-dated for Jan 29th or 30th 2001. Meanwhile, Verisign is left with egg on their face with a flawed validation process for the hard to get class 3 certificates. You can bet Verisign will be tightening up that process in short order.
- Sun, 2013-05-19 23:17
- Tue, 2013-04-23 06:38
- Wed, 2013-04-17 14:39