News

Urgent Certificate Patch Issued by Microsoft to Address ‘Out-of-Band’ Foreign Certificates

It is said that Microsoft normally releases their patches and updates on the second Tuesday of every month, also known by most as being Patch Tuesday. This time however, they have apparently been forced to release another update having discovered that foreign encryption certificates for big websites, such as Google, had been coming from the National Informatics Center of India’s certificate server.

The problem here is that attackers have allegedly gained access to the certificate generation system and have issued at least 45 certificates, allowing them to pose as companies ranging from email providers to search engines and even banks, as well as credit card processors. Having NIC generating the certificates, the possibility of becoming a victim is extremely high due to browsers showing the given web sites as being trustworthy, having Microsoft flagging the issue as top priority and issuing the urgent ‘out-of-band’ patch.

“The subordinate CA has been misused to issue SSL certificates for multiple sites, including Google web properties. These SSL certificates could be used to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against web properties,” Microsoft warned in its emergency bulletin. “The subordinate CAs may also have been used to issue certificates for other, currently unknown sites, which could be subject to similar attacks.”

Microsoft has stated that the update in question is being rolled out automatically to all Windows 8 and Windows 8.1 users, as well as users of older Windows operating systems who have installed a recommended Windows Update patch, adding the certificate revocation support to the operating system.

Thank you Bit-Tech for providing us with this information

Gabriel Roşu

Disqus Comments Loading...

Recent Posts

BenQ MOBIUZ EX2710Q 27″ QHD 165Hz 1ms, HDRi IPS Gaming Monitor

SpeakersSpeakersYesSpeaker amount and power output2x 2 WattDimensionsLength / Depth252.5 mmWidth614 mmHeight525.8 mmWeight7.4 kgStandards / SpecificationsAdaptive…

2 hours ago

Intel Core i7-12700KF 3.60GHz Socket LGA1700 Processor

Thermal SpecificationsMax. TDP125 WCPUCPU ManufacturerIntelCPU SeriesIntel Core i7CPU Socket1700CPU ArchitectureIntel Alder Lake-SCPU Cores12CPU Threads20Performance Cores8Efficiency…

2 hours ago

AOC 24B3HA2 24″ 1920×1080 VA 100Hz 1m Widescreen LED Multimedia Monitor 

AOC 24B3HA2 23.6 1920x1080 VA 100Hz 1m Widescreen LED Multimedia Monitor - Black High-performance clarity…

2 hours ago

Corsair Hydro Series iCUE Link H115i RGB Performance Liquid CPU Cooler

Fan SpecificationsFan Size140 mmColourPrimary ColourBlackSecondary ColourWhiteMaterialsMaterialsAluminium, Copper, RubberLightingLightingYesLighting ColourRGBLighting CompatibilityCorsair iCUEAdditional ContentsIncluded fans2x 140 mmTypeCPU…

2 hours ago

Philips Evnia 34″ 34M2C6500/00 3440×1440 QD-OLED 175Hz 1ms FreeSync Curved Ultrawide Gaming Monitor

This monitor is built with features that make incredible visuals. With VESA ClearMR 9000 and…

2 hours ago

Asus Radeon RX 7900 XTX TUF OC 24GB GDDR6 PCI-Express Graphics Card

The AMD RDNA™ 3 Architecture elevated by buffed cooling and power delivery to effortlessly churn…

2 hours ago