certificates
GlobalSign stops issuing SSL certificates in response to Iranian hacker
Digital certificate authority GlobalSIgn, the fifth largest issuer of SSL certificates, ceased signing new certificates today after accusations by an Iranian hacker that they are compromised.
Google blacklists 247 certificates. Is it related to DigiNotar hacking incident?
Google has blacklisted over 200 certificates seemingly related to the DigiNotar hacking incident. What is the full extent of this breach, and who else may have been targeted?
EFF uncovers further evidence of SSL CA bad behavior
The Electronic Frontier Foundation has published a report showing the SSL certificate industry has been ignoring policies and signing tens of thousands of invalid certificates.
Are signed files safer than others?
Mike Wood of SophosLabs Vancouver presented "Want my autograph? The use and abuse of digital signatures by malware" at the 2010 Virus Bulletin conference. Mike's talk was focused on the trust that people and technology put into certificates and how Read more…
Certified uncertainty
Just when we thought we understood what was happening with the Stuxnet rootkit the plot thickens. As I reported in my original story, the rootkit component and several other pieces were signed with a legitimate digital certificate from Realtek Semiconductor. Read more…
Microsoft updates trusted root certs to include Startcom
This week while I was away at Virus Bulletin Microsoft released an update to the root certificates they include for Windows and Internet Explorer. On its own this is not noteworthy, but I have been meaning to blog about this Read more…
![Password security infomerical leaves Ellen DeGeneres in disbelief.. and it will you too [VIDEO]](http://sophosnews.files.wordpress.com/2013/04/ellen-thumb.jpg?w=75&h=75&crop=1)
![Can multiple moving cursors really hide your password from spyware and peepers? [VIDEO]](http://sophosnews.files.wordpress.com/2013/03/cursors-thumb.jpg?w=75&h=75&crop=1)
