GlobalSign web certificate authority back online after hacker breach

The attack on DigiNotar resulted in fraudulent web authentication certificates being issue for hundreds of websites, including

As soon as the DigiNotar hacker made the claim about GlobalSign, the CA suspended certificate issue on September 6.

Three days later, GlobalSign, the fifth largest digital certificate issuer, confirmed that it had found evidence of a breach to the web server hosting its website, but said the server was isolated from all other infrastructure and there was no evidence of any further breach.

The CA said it would begin work on returning services to normal, but would continue to monitor all activity on all services as a precaution.

The company is still investigating whether bogus certificates were created in its name, according to the BBC.

The breach at DigiNotar raised concerns about the CA system, as digital certificates are used to verify the identity of a person or device, authenticate a service or encrypt files.

Consequently, a fraudulent certificate may be used to spoof web content, perform phishing attacks or perform man-in-the-middle attacks.

This story was first published by Computer Weekly

What’s hot on Infosecurity Magazine?