certificates

DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight

Jul 31, 2024 by iHash Leave a Comment

Jul 31, 2024Ravie LakshmananWeb Security / Compliance Certificate authority (CA) DigiCert has warned that it will be revoking a subset of SSL/TLS certificates within 24 hours due to an oversight with how it verified if a digital certificate is issued to the rightful owner of a domain. The company said it will be taking the step of revoking certificates that do not have proper … [Read more...] about DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight

Google to Block Entrust Certificates in Chrome Starting November 2024

Jun 29, 2024 by iHash Leave a Comment

Jun 29, 2024NewsroomCybersecurity / Website Security Google has announced that it's going to start blocking websites that use certificates from Entrust starting around November 1, 2024, in its Chrome browser, citing compliance failures and the certificate authority's inability to address security issues in a timely manner. "Over the past several years, publicly disclosed … [Read more...] about Google to Block Entrust Certificates in Chrome Starting November 2024

Hackers Sign Android Malware Apps with Compromised Platform Certificates

Dec 2, 2022 by iHash Leave a Comment

Platform certificates used by Android smartphone vendors like Samsung, LG, and MediaTek have been found to be abused to sign malicious apps. The findings were first discovered and reported by Google reverse engineer Łukasz Siewierski on Thursday. "A platform certificate is the application signing certificate used to sign the 'android' application on the system image," a report … [Read more...] about Hackers Sign Android Malware Apps with Compromised Platform Certificates

New BLISTER Malware Using Code Signing Certificates to Evade Detection

Dec 24, 2021 by iHash Leave a Comment

Cybersecurity researchers have disclosed details of an evasive malware campaign that makes use of valid code signing certificates to sneak past security defenses and stay under the radar with the goal of deploying Cobalt Strike and BitRAT payloads on compromised systems. The binary, a loader, has been dubbed "Blister" by researchers from Elastic Security, with the malware … [Read more...] about New BLISTER Malware Using Code Signing Certificates to Evade Detection

Maximum Lifespan of SSL/TLS Certificates is 398 Days Starting Today

Sep 1, 2020 by iHash Leave a Comment

Starting today, the lifespan of new TLS certificates will be limited to 398 days, a little over a year, from the previous maximum certificate lifetime of 27 months (825 days).In a move that's meant to boost security, Apple, Google, and Mozilla are set to reject publicly rooted digital certificates in their respective web browsers that expire more than 13 months (or 398 days) … [Read more...] about Maximum Lifespan of SSL/TLS Certificates is 398 Days Starting Today

AdGuard VPN + Ad Blocker Family Security Suite for $49

Microsoft Office 2024 Home for Mac or PC: One-Time Purchase for $119

ASUS 14" Chromebook C424 (2021) Intel N4020 4GB RAM 128GB eMMC (Refurbished) for $174

Lenovo IdeaPad 5, 14" Touchscreen 2-in-1 Laptop (2024) AMD Ryzen 7, 16GB RAM 1TB SSD Windows 11 Home Cosmic Blue (Refurbished) for $649

Stacks Be Productive Plan: Lifetime Subscription for $29

DigiCert to Revoke 83,000+ SSL Certificates Due to Domain Validation Oversight

Google to Block Entrust Certificates in Chrome Starting November 2024

Hackers Sign Android Malware Apps with Compromised Platform Certificates

New BLISTER Malware Using Code Signing Certificates to Evade Detection

Maximum Lifespan of SSL/TLS Certificates is 398 Days Starting Today