Skip to main content
  1. Home
  2. Computing
  3. News

GlobalSign stops issuing certificates after DigiNotar hacker boast

By
GlobalSign
Image used with permission by copyright holder

Certificate authority GlobalSign has stopped issuing new security certificates after a hacker who claimed responsibility for last week’s breach of DigiNotar claimed to have access to four more certificate authorities—specifically naming GlobalSign. As a precaution, GlobalSign as temporarily stopped issued new security certificates until it can complete an investigation; the company also announced it has hired Dutch cyber-security firm Fox-IT to assist—Fox-IT just helped out with the investigation of the DigiNotar breach.

“GlobalSign takes this claim very seriously and is currently investigating,” the company wrote.

Recommended Videos

GlobalSign’s move comes after an anonymous post surfaced on Pastebin, claiming to be from the attacker who recently issued several hundred bogus security certificates from DigiNotar (including one for Google). The Pastebin account was the same one used someone claiming to have previously breached the Comodo certificate authority. The attacker has also given interviews, and claims to be a 21 year-old Iranian.

In theory, the bogus certificates could be used to intercept secured communications with a Web site via a man-in-the-middle attack. Both Fox-IT and Trend Micro have noted that a large number of IP addresses connecting to Google and authenticating via DigiNotar after the breach were from Iran.

In the meantime, Dutch telecommunications firm KPN says its Getronics unit is picking up new business from former DigiNotar customers. Major desktop Web browsers have issued updates invalidating all security certificates issued by DigiNotar in order to protect users from possible security threats.

However, smartphone users may still be at risk: no smartphone or mobile OS makers (including Google and Apple) have announced plans to revoke DigiNotar certificates on devices running their operating system. This means those devices are, in theory, still susceptible to man-in-the middle attacks that would enable others to spy on communications. Given that one of the bogus certificates was issued for Google, the threat to Android users could be significant.

Apple, Google, and other smartphone OS makers must work with carriers to get updates to their users, even in the case of serious security issues like the DigiNotar breach.

Topics
Geoff Duncan
Geoff Duncan
Former Digital Trends Contributor
Geoff Duncan writes, programs, edits, plays music, and delights in making software misbehave. He's probably the only member…
The 5 best Microsoft Surface Pro alternatives in 2024
Microsoft Surface Pro 9 top down showing tablet and Type Cover.

Whether you’re looking at the Surface Pro 9 or the Surface Pro 8, the Microsoft Surface Pro lineup is filled with great choices. But they can be a bit expensive, and if they’re just not quite what you’re looking for, you should know that you have other options.

To help you explore those options, we’ve collected our five favorite Surface Pro alternatives for you below. And, if you’re still not convinced and want to grab yourself a Surface Pro, then at least check out these Surface Pro deals to help save yourself some extra cash.

Read more
The 6 best Steam Deck alternatives in 2024
The game library of the Lenovo Legion Go.

Thanks to some great brand recognition and the fact pretty much all PC gamers are tied into the Steam ecosystem anyhow, it makes sense that we all gravitate towards the Steam Deck when it comes to portable gaming with a highly customizable flavor. The relatively recent addition of the Steam Deck OLED has made it even more appealing with great screen quality improving the experience. However, what about if you want to try something other than the Steam Deck? It’s a great portable console but it isn’t perfect and other options may suit your needs better.

To help you figure out what’s best for your needs, we’ve picked out some of the best Steam Deck alternatives currently available. Each system offers a slightly different experience to the Steam Deck while providing the same great game playing experience, across different gaming ecosystems. To help you come to the best decision, we’ve also looked at why we’ve picked the consoles we’ve picked. Read on while we take you through everything you ned to know.
The best Steam Deck alternatives in 2024

Read more
The 6 best detachable laptops in 2024
The Surface Pro 9 with the Type Cover keyboard lifted up.

Detachable laptops – or tablets with removable keyboards – are a popular alternative to traditional laptops. These devices are ultra-portable and versatile, allowing you to stow them in even the most cramped backpack. They also serve as both tablet and laptop, letting you make use of their touchscreen for notetaking or drawing before reattaching their keyboard to type up a lab report or presentation.

There are hundreds of detachable laptops to choose from in 2024, including powerful models from Microsoft, Apple, Dell, and ASUS. However, it can be hard to narrow down all the options, as many of them offer similar specs or identical designs.

Read more