TMCnet Feature Free eNews Subscription
September 08, 2011

GlobalSign Stops Issuing Digital Certificates after Hack

By Ed Silverstein, TMCnet Contributor

GlobalSign will stop issuing digital certificates for a while after hackers allegedly accessed the security firm’s network.

One hacker claimed on Pastebin that he had access to several Certificate Authorities, which are organizations that issue digital certificates. GlobalSign is one of them.

"GlobalSign takes this claim very seriously and is currently investigating," the company said in a press statement. "As a responsible CA, we have decided to temporarily cease issuance of all certificates until the investigation is complete."

The suspected hacker was identified as “ComodoHacker,” ComodoHacker is apparently warning of additional attacks. "Wait for me, you have so much more SHOCKINGS to see from me!" PC Magazine quoted from a statement released by ComodoHacker.

In a related matter, at DigiNotar a hack may have “compromised the Google (News - Alert) accounts of more than 300,000 Iranians,” PC Magazine said. ComodoHacker said in a note on Pastebin that, "I'm single person, do not AGAIN try to make an ARMY out of me in Iran. If someone in Iran used certs I have generated, I'm not one who should explain."

It was alleged by ComodoHacker that the DigiNotar hack was in response to the 2005 Srebrenica massacre, which led to the deaths of more than 8,000 Bosnian Muslims, according to PC Magazine.

In addition, DigiNotar saw a July breach that caused the company to issue more than 500 fraudulent SSL certificates, according to TMCnet. 

Earlier this week, Microsoft (News - Alert) revoked five DigiNotar root certificates because of the hacking. Microsoft plans to issue an automatic update to clear up the problem.

Google and Mozilla (News - Alert) also revoked trust in DigiNotar certificates, PC World said.

TMCnet said that DigiNotar faces an uncertain future, with analysts speculating the reaction to the hacking could mean the end for the Dutch firm. The company was criticized for not informing others about the breach in a timely manner, TMCnet said.

Want to learn more about the latest in communications and technology? Then be sure to attend ITEXPO West 2011, taking place Sept. 13-15, 2011, in Austin, Texas. ITEXPO (News - Alert) offers an educational program to help corporate decision makers select the right IP-based voice, video, fax and unified communications solutions to improve their operations. It's also where service providers learn how to profitably roll out the services their subscribers are clamoring for – and where resellers can learn about new growth opportunities. To register, click here.


Ed Silverstein is a TMCnet contributor. To read more of his articles, please visit his columnist page.

Edited by Rich Steeves
» More TMCnet Feature Articles
Get stories like this delivered straight to your inbox. [Free eNews Subscription]
SHARE THIS ARTICLE

LATEST TMCNET ARTICLES

» More TMCnet Feature Articles