Symantec patched a certificate spoofing vulnerability in its Install Norton Security product that occurs when downloading Norton for Mac.
In Case You Missed It: Symantec illegal certs; Kaspersky employee arrest; Lloyds DdoS, SC 2017 salary survey; GE Scada vulnerabilities
Google has instituted a blacklist of untrustworthy certificates for use in the company's browser Chrome.
A new vulnerability could kill a certain kind of encryption for plenty of websites. An OpenSSL update has been rushed out to fix major flaw.
Dell's new threat report adds further evidence to support the observation that attackers are increasingly hiding activity within HTTPS.
The generosity of the free TSL certificate non-profit, Let's Encrypt, has been abused by malvertising cyber-criminals
Dell reported that it has been shipping Inspiron 14 laptops since August that inadvertently contained the security certificate, eDellRoot, that essentially gives hackers complete access to the system.
Symantec have fired several staff members after they created unauthorised and potentially malicious Google SSL certificates
Security credentials hard coded into repositories could have helped hackers, according to research by security consultant Gabor Szathmari.
CESG, the information arm of GCHQ, was forced to take down its HTTPS website earlier this week after the organisation's SSL digital certificate was revoked.
A joint study from Venafi and the Ponemon Institute reveals that digital keys and certificates are in peril, especially at UK organisations.
Vormetric has launched a storage solution for the protection and management of digital certificates, encryption keys and password files.
Attacks within the certificate infrastructure are due to mismanagement rather than attacks on certificate authorities (CAs).
Turkish certificate authority (CA) TurkTrust has denied that there was any attack, "malevolence, fraud or any other crime factor" on it resulting in the issuing of fraudulent certificates.
The fraudulent issuing of certificates from a Turkish certificate authority (CA) has led to major web browsers revoking trust.