Fraudulent certificate issued BY COMODO ...

Guest

Fraudulent certificate issued BY COMODO ...

Post by Guest » Thu Mar 24, 2011 7:37 am

A recent article published on Naked Security shows a Fraudulent in security certificate by Comodo...
One user account in one RA was compromised.The attack was from IRAN.
The certificates issued were mostly for a popular websites..
And according to Comodo 1 of them seen lively on login.yahoo.com

More Infos:::

http://nakedsecurity.sophos.com/2011/03/24/fraudulent-certificates-issued-by-comodo-is-it-time-to-rethink-who-we-trust/

http://blogs.comodo.com/it-security/data-security/the-recent-ca-compromise/

http://www.comodo.com/Comodo-Fraud-Incident-2011-03-23.html

Guest

RE: Fraudulent certificate issued BY COMODO ...

Post by Guest » Thu Mar 24, 2011 10:24 am

I don't understand the shock of all this. Comodo don't have a very good history regarding the issuing of SSL certificates.

Jazspeak
Posts: 7295
Joined: Fri Oct 17, 2008 4:20 pm

RE: Fraudulent certificate issued BY COMODO ...

Post by Jazspeak » Thu Mar 24, 2011 12:11 pm

"Comodo don't have a very good history..."

Agreed. I recall there was a thread about this topic on this forum some time ago.

Guest

RE: Fraudulent certificate issued BY COMODO ...

Post by Guest » Thu Mar 24, 2011 12:16 pm

a thread about this topic on this forum some time ago.
Is it was this???
http://www.mywot.com/en/forum/3930-comodo-and-the-ongoing-trust-saga

Jazspeak
Posts: 7295
Joined: Fri Oct 17, 2008 4:20 pm

RE: Fraudulent certificate issued BY COMODO ...

Post by Jazspeak » Thu Mar 24, 2011 12:22 pm

Re http://www.mywot.com/forum/3930-comodo-and-the-ongoing-trust-saga

Yes, that will do for starters.

Guest

RE: Fraudulent certificate issued BY COMODO ...

Post by Guest » Thu Mar 24, 2011 12:46 pm

I find it quite disturbing that SSL certificates were implemented to add extra security for the proitection of users yet whenever there is a breech or other threat, guess who's name always seems to be mentioned? Yes, Comodo!

My opinion is that Comodo do not appear help users build up trust in SSL certificates and I personally pay little or no attention to these SSL Certificates because I am well aware how easy it is for criminals to obtain and try to fool me into thinking their sites etc. are safe to conduct transactions on. In fact I trust them as much as I would trust a thief with my ATM card.

I blame Comodo and their history for feeling this way. If they had been more responsible with issueing certificates in the first place, maybe I would have a different view on Digital Certification.

Guest

RE: Fraudulent certificate issued BY COMODO ...

Post by Guest » Thu Mar 24, 2011 2:40 pm

Firefox 3.6/4.0 already blocks fraudolent certificates
http://blog.mozilla.com/security/2011/03/22/firefox-blocking-fraudulent-certificates/

Same for Chrome v 10.0.648.15
http://googlechromereleases.blogspot.com/2011/03/stable-and-beta-channel-updates_17.html

Windows users can download install this to address that issue (available through Windowsupdate too)
http://support.microsoft.com/kb/2524375

I do not know about Opera and Safari

Guest

RE: Fraudulent certificate issued BY COMODO ...

Post by Guest » Thu Mar 24, 2011 2:42 pm

The concern is not about who blocks what within browsers but the certificates themselves and how they were issued or aquired.

Guest

RE: Fraudulent certificate issued BY COMODO ...

Post by Guest » Thu Mar 24, 2011 2:50 pm

The concern is not about who blocks what within browsers but the certificates themselves and how they were issued or aquired.

in the mean time we average users might also like to know how to protect ourselves

c۞g
Posts: 21225
Joined: Mon Jan 05, 2009 4:02 am

RE: Fraudulent certificate issued BY COMODO ...

Post by c۞g » Thu Mar 24, 2011 3:11 pm

comodo cert's

might as well say [url=http://www.google.com/images?q=commode t=_self]commode cert's[/url]
for comodo sells anything to anyone ...
they're as poor of a certificate authority as trustmark / godaddy...

Post Reply

Who is online

Users browsing this forum: No registered users and 4 guests