Microsoft will be shipping an update as part of October's Patch Tuesday that will invalidate RSA certificates weaker than 1024 bits. If you are using old or weak certificates now is the time to upgrade them to a more appropriate strength.
Microsoft has released an emergency update for Windows, revoking digital certificates that could be used to impersonate the Windows Update security service. The Flame malware exploited flaws related to this vulnerability realizing concerns that Windows Update might be compromised to distribute malware.
Microsoft has reissued a security update to remove DigiNotar's certificates from Windows XP and Windows 2003 after a mistake in last week's Patch Tuesday failed to remove most important certificates that were being abused.
Mike Wood a Senior Threat Researcher with SophosLabs is Chet's guest. They discuss the upcoming Patch Tuesday, the new Firesheep and go in depth on the recent troubles at certificate authority DigiNotar.
Digital certificate authority GlobalSIgn, the fifth largest issuer of SSL certificates, ceased signing new certificates today after accusations by an Iranian hacker that they are compromised.
All unpatched iPhone/iPads/iPod Touchs can be snooped on exposing usernames, passwords and even sensitive financial data using freely available tools. Patch now!
Apple users have largely been left unprotected against the recent issuance of fraudulent SSL certificates by Comodo. Learn how to configure your Mac to defend against bogus SSL certificates.
I spent some time last week looking into the digital signature involved with the recent zero day malware targeting Adobe Reader. Similar to the Stuxnet situation, Verisign has revoked the signing certificate used to sign the payload associated with this Read more…