Skip to main content
  1. Home
  2. Computing
  3. News

Fake DigiNotar certificates targeting Iranians?

By
DigiNotar Iranian traffic surge (Trend Micro)
Image used with permission by copyright holder

Computer security firm Trend Micro says fake digital certificates from compromised Dutch certification authority DigiNotar were part of a broad-scale man-in-the-middle attack targeting Iranian Internet users—and may have left political dissidents, activists, and others trying to bypass Iran’s online censorship regime vulnerable to eavesdropping.

DigiNotar catapulted into the news late last month when it was discovered to have issued a rogue certificate for Google.com, making it possible for third parties to carry out man-in-the-middle attacks on Google services—like Gmail—as if they were trusted and verified systems controlled by Google. Online security professionals tried to react quickly, but Trend Micro noticed something very odd about requests for domain validation through diginotar.nl: it’s a small firm that mostly serves customers in the Netherlands, so one would expect most of its domain validation requests to come from the Netherlands. And that’s true. However, beginning August 28 a significant number of Internet users requesting domain validation through DigiNotar were from Iran. No other countries saw any significant uptick in domain verification requests through DigiNotar.

Recommended Videos

The unusual spike in requests started on August 28, dropped off substantially by August 30, and was all but gone on September 2.

“These aggregated statistics [..] clearly indicate that Iranian Internet users were exposed to a large scale man-in-the-middle attack, where SSL encrypted traffic can be decrypted by a third party,” Trend Micro senior threat researcher Feike Hacquebord wrote.

Trend Micro also notes that several Web proxy systems in the United States—which are widely used by individuals wishing to access sites anonymously and without revealing their IP address or other details—were also sending Web validation requests for DigiNotar. Trend Micro speculates that these proxy services were being used by Iranian citizens seeking to work around government censorship—but the fake trust certificates would have meant their encrypted communications could have been intercepted anyway.

Trend Micro’s analysis is based on the company’s Smart Protection Network, which collects and analyzes data from Trend Micro customers around the world, including what domain names are accessed by customers at particular times.

Topics
Geoff Duncan
Geoff Duncan
Former Digital Trends Contributor
Geoff Duncan writes, programs, edits, plays music, and delights in making software misbehave. He's probably the only member…
The simple reasons your PC games don’t play as well as they should
The HP Omen 40L desktop sitting on a coffee table.

Whether you have the best gaming desktop money can buy or a budget-oriented PC, the whole point of it all is to be able to play your favorite games and make them look nice and run great. Not every gamer cares about visuals, but performance matters, and getting your money's worth out of your PC is important, too.

If a PC performs poorly in games, many of us immediately assume that the hardware is to blame. Sure, that can often be the case, but before you start looking into ways to upgrade your computer, try out these solutions that might solve your problem and let you get back to high-quality gaming.
PC settings
Whether you're dealing with poor performance, such as stuttering and low frames per second (fps), or you're simply unhappy with how your games look, the root of the problem might lie in the settings of your PC -- and as such, it could be an easy fix.

Read more
It’s time to stop ignoring the CPU in your gaming PC
A hand holding an AMD Ryzen CPU.

There's one thing that will strike fear into the heart of any PC gamer: a CPU bottleneck. It's unimaginable that you wouldn't get the full power of your GPU when playing games, which is often the most expensive component in your rig. And although knowledge of what CPU bottlenecks are and how to avoid them is common, we're in a new era of bottlenecks in 2024.

It's time to reexamine the role your CPU plays in your gaming PC, not only so that you can get the most performance out of your rig but also to understand why the processor has left the gaming conversation over the last few years. It's easy to focus all of your attention on a big graphics card, but ignore your CPU and you'll pay a performance price.
The common knowledge

Read more
5 laptops you should buy instead of the Dell XPS 14
The Dell XPS 14 on a white table with the screen open.

The Dell XPS 14 is an excellent 14-inch laptop with a thoroughly modern design and aesthetic, as well as some fast components. You can even configure it with an Nvidia RTX 4050.

But there's no question that it's been controversial. Between the invisible trackpad to the LED touch keys, there are plenty of reasons to consider a different option. Here are the five alternatives you should consider before pulling the trigger on the XPS 14.
Apple MacBook Pro 14
Apple MacBook Pro 14 Mark Coppock / Digital Trends

Read more