Last week it was found that DigiNotar, a Dutch Certificate Authority (CA), had issued a rogue SSL certificate for “*.google.com”. Hackers apparently used the fraudulent certificate to intercept Iranian users’ email, among other items. The attack went undetected by the users because their browsers trusted the DigiNotar certificate. A third-party trust provider represents an extremely high value target for hackers. Once an attacker can access and steal trust credentials, they can commit various cyber-criminal acts in pursuit of their own nefarious agenda.
Over the past weekend Government helplines in The Netherlands have been open all weekend to answer questions from anyone who uses the Internet for sending confidential information to government departments, their advice is that people should not use online services until further notice!
To obtain more details on this story and get a perspective on why this has happened and what organisations must do to protect their data from major breaches and brand damage we can put you in touch with an expert based in The Netherlands. Calum MacLeod is Director of Venafi - the enterprise key and certificate management (EKCM) solution experts – and a leading IT security expert in this area who would be happy to answer your questions.
If you would like to speak to Calum Macleod please call
Bill Boyle on 0207 1832 840