digital certificates

  1. June 2013 Security Bulletin Webcast, Q&A, and Slide Deck

    Today we’re publishing the Link Removed. We fielded three questions during the webcast, with specific questions focusing primarily on Windows Print Spooler (MS13-050), Microsoft Office (MS13-051), and the security advisory addressing digital certificates (SA2854544). There was one...
    • News
    • Thread
    • advisory bulletin digital certificates july microsoft office print spooler q&a registration security technet update webcast
    • Replies: 0
    • Forum: Security Alerts

  2. Improved cryptography infrastructure and the June 2013 bulletins

    It was just over one year ago, May 28, 2012, to be exact, that I transitioned from running active MSRC cases and writing bulletins to my current role managing software security incidents. A lot has changed in that year - and I’ve dealt with some interesting issues during my tenure - but...
    • News
    • Thread
    • certificate consumer protection cryptography cumulative update deployment priority digital certificates internet explorer june 2013 microsoft office pki remote code execution security security advisories software security trustworthy computing update management vulnerabilities windows 7 windows update windows vista
    • Replies: 0
    • Forum: Security Alerts

  3. Microsoft Security Advisory (2854544): Update to Improve Cryptography and Digital Certificate Handli

    Revision Note: V1.0 (June 11, 2013): Advisory published. Summary: Microsoft is announcing the availability of an update as part of ongoing efforts to improve cryptography and digital certificate handling in Windows. Over the course of months, Microsoft will continue to announce...
    • News
    • Thread
    • advisory cryptography digital certificates handling infrastructure microsoft security threats update
    • Replies: 0
    • Forum: Security Alerts

  4. Microsoft Security Advisory (2749655): Compatibility Issues Affecting Signed Microsoft Binaries - Ve

    Revision Note: V1.0 (October 9, 2012): Advisory published. Summary: Microsoft is aware of an issue involving specific digital certificates that were generated by Microsoft without proper timestamp attributes. These digital certificates were later used to sign some Microsoft core...
    • News
    • Thread
    • advisory binaries compatibility components digital certificates microsoft security timestamp update windows
    • Replies: 0
    • Forum: Security Alerts

  5. Gadgets, certificate housekeeping and the July 2012 bulletins

    Before we dive into the July security updates, let’s change up the normal order and take a look at the two Security Advisories we are releasing today. One takes an exciting step into the future, while the other prepares us to take an equally important step away from the past. Security...
    • News
    • Thread
    • advisories certificate code signing critical update deployment digital certificates gadgets housekeeping internet explorer management microsoft microsoft store pki remote code execution risk management security update vulnerabilities windows 7 windows vista
    • Replies: 0
    • Forum: Security Alerts

  6. Microsoft Security Advisory (2728973): Unauthorized Digital Certificates Could Allow Spoofing - Vers

    Revision Note: V1.0 (July 10, 2012): Advisory published. Summary: Microsoft is aware of Microsoft certificate authorities that are outside our recommended secure storage practices. Upon a routine review, we are placing these certificates in the Untrusted Certificate Store, and...
    • News
    • Thread
    • advisory consumer protection digital certificates microsoft pki public key infrastructure security spoofing untrusted store windows
    • Replies: 0
    • Forum: Security Alerts

  7. Microsoft Security Advisory (2718704): Unauthorized Digital Certificates Could Allow Spoofing - Vers

    Revision Note: V1.0 (June 3, 2012): Advisory published. Summary: Microsoft is aware of active attacks using three unauthorized digital certificates derived by a Microsoft Certificate Authority. An unauthorized certificate could be used to spoof content, perform phishing attacks, or...
    • News
    • Thread
    • advisory attack certificate digital certificates internet explorer microsoft phishing security spoofing windows
    • Replies: 0
    • Forum: Security Alerts

  8. TA12-156A: Microsoft Windows Unauthorized Digital Certificates

    Syndicated from the United States Security Readiness Team (US-CERT). Link Removed - Invalid URL
    • News
    • Thread
    • access denied cybersecurity digital certificates microsoft security us-cert windows
    • Replies: 0
    • Forum: Security Alerts

  9. Unauthorized digital certificates could allow spoofing

    Provides a link to Microsoft Security Advisory (2718704): Unauthorized digital certificates could allow spoofing. Link Removed
    • News
    • Thread
    • access denied advisory digital certificates microsoft security spoofing
    • Replies: 0
    • Forum: Knowledge Base (KB)

  10. Microsoft Security Advisory (2718704): Unauthorized Digital Certificates Could Allow Spoofing - Vers

    Revision Note: V1.0 (June 3, 2012): Advisory published. Summary: Microsoft is aware of active attacks using three unauthorized digital certificates derived by a Microsoft Certificate Authority. An unauthorized certificate could be used to spoof content, perform phishing attacks, or...
    • News
    • Thread
    • advisory attack digital certificates internet explorer microsoft phishing security spoofing windows
    • Replies: 2
    • Forum: Security Alerts

  11. Microsoft Security Advisory (2641690): Fraudulent Digital Certificates Could Allow Spoofing - Versio

    Revision Note: V2.0 (November 16, 2011): Revised to announce the rerelease of the KB2641690 update. See the Update FAQ in this advisory for more information. Also, added link to Microsoft Knowledge Base Article 2641690 under Known Issues in the Executive Summary. Summary: Microsoft is...
    • News
    • Thread
    • advisory cybertrust digicert digital certificates encryption entrust internet explorer knowledge base known issues man-in-the-middle microsoft phishing revision note security spoofing update vulnerability weak keys windows
    • Replies: 0
    • Forum: Security Alerts

  12. Microsoft Security Advisory (2641690): Fraudulent Digital Certificates Could Allow Spoofing - Versio

    Revision Note: V1.0 (November 10, 2011): Advisory published. Summary: Microsoft is aware that DigiCert Sdn. Bhd, a Malaysian subordinate certification authority (CA) under Entrust and GTE CyberTrust, has issued 22 certificates with weak 512 bit keys. These weak encryption keys, when...
    • News
    • Thread
    • advisory digital certificates internet explorer man-in-the-middle microsoft phishing security spoofing weak encryption windows
    • Replies: 0
    • Forum: Security Alerts

  13. Microsoft Security Advisory (2524375): Fraudulent Digital Certificates Could Allow Spoofing - Versio

    Revision Note: V5.0 (July 6, 2011): Announced the release of an update for Zune HD devices and moved Zune devices to the Non-Affected Devices table. Summary: Microsoft is aware of nine fraudulent digital certificates issued by Comodo, a certification authority present in the Trusted...
    • News
    • Thread
    • advisory browser certification comodo cybersecurity digital certificates fraudulent certificates internet explorer kin microsoft mobile security non-affected devices phishing risk management security spoofing trusted root update windows phone zune
    • Replies: 0
    • Forum: Security Alerts

  14. Microsoft Security Advisory (2607712): Fraudulent Digital Certificates Could Allow Spoofing - Versio

    Revision Note: V3.0 (September 6, 2011): Revised to announce the release of an update that addresses this issue. Summary: Microsoft is aware of active attacks using at least one fraudulent digital certificate issued by DigiNotar, a certification authority present in the Trusted Root...
    • News
    • Thread
    • advisory attack digital certificates fraud internet explorer microsoft phishing security spoofing windows
    • Replies: 0
    • Forum: Security Alerts

  15. Microsoft Security Advisory: Fraudulent digital certificates could allow spoofing

    Provides a link to Microsoft Security Advisory (2607712): Fraudulent digital certificates could allow spoofing. Link Removed
    • News
    • Thread
    • advisory cybersecurity digital certificates fraud microsoft security spoofing threats
    • Replies: 0
    • Forum: Knowledge Base (KB)

  16. Microsoft Security Advisory (2607712): Fraudulent Digital Certificates Could Allow Spoofing - 9/6/20

    Revision Note: V3.0 (September 6, 2011): Revised to announce the release of an update that addresses this issue. Advisory Summary:Microsoft is aware of active attacks using at least one fraudulent digital certificate issued by DigiNotar, a certification authority present in the Trusted Root...
    • News
    • Thread
    • advisory attack certificate digital certificates internet explorer microsoft phishing security spoofing windows
    • Replies: 0
    • Forum: Security Alerts

  17. More on Microsoft’s response to the DigiNotar compromise

    Microsoft’s investigation into the scope and impact of the DigiNotar compromise has continued over the holiday weekend. We’ve now confirmed that spoofed certificates for *.microsoft.com and *.windowsupdate.com are among those issued by the Dutch firm. Users of Vista and later...
    • News
    • Thread
    • advisory certificate cybersecurity diginotar digital certificates fraud investigation microsoft protection safety security server 2003 spoofed certificates trustworthy computing untrusted store user protection windows update windows vista
    • Replies: 0
    • Forum: Security Alerts

  18. Microsoft Security Advisory (2607712): Fraudulent Digital Certificates Could Allow Spoofing - 8/29/2

    Revision Note: V2.0 (August 29, 2011): Revised to correct erroneous advisory number. Advisory Summary:Microsoft is aware of at least one fraudulent digital certificate issued by DigiNotar, a certification authority present in the Trusted Root Certification Authorities Store, on all supported...
    • News
    • Thread
    • advisory certification diginotar digital certificates microsoft security spoofing trust windows
    • Replies: 0
    • Forum: Security Alerts

  19. Microsoft Security Advisory (2607712): Fraudulent Digital Certificates Could Allow Spoofing

    Revision Note: V2.0 (August 29, 2011): Revised to correct erroneous advisory number.Summary: Microsoft is aware of at least one fraudulent digital certificate issued by DigiNotar, a certification authority present in the Trusted Root Certification Authorities Store, on all supported releases of...
    • News
    • Thread
    • advisory diginotar digital certificates microsoft protection security spoofing trusted root vulnerability windows
    • Replies: 0
    • Forum: Security Alerts

  20. Microsoft Security Advisory (260771): Fraudulent Digital Certificates Could Allow Spoofing - 8/29/20

    Revision Note: V1.0 (August 29, 2011): Advisory published. Advisory Summary:Microsoft is aware of at least one fraudulent digital certificate issued by DigiNotar, a certification authority present in the Trusted Root Certification Authorities Store, on all supported releases of Microsoft...
    • News
    • Thread
    • advisory certification diginotar digital certificates microsoft security spoofing trusted root vulnerability windows
    • Replies: 0
    • Forum: Security Alerts