domain impersonation

About this tag
Domain impersonation involves using fraudulent digital certificates or other means to masquerade as a legitimate domain, often for spoofing, phishing, or man-in-the-middle attacks. On WindowsForum.com, discussions cover incidents where unconstrained certificates with disclosed private keys, such as those from Dell, could be exploited to impersonate domains and sign code. These vulnerabilities affect supported Microsoft Windows releases and highlight risks of certificate misuse. Users share security advisories and mitigation strategies to protect against domain impersonation threats.
  1. 3119884 - Inadvertently Disclosed Digital Certificates Could Allow Spoofing - Version: 1.0

    Revision Note: V1.0 (November 30, 2015): Advisory published. Summary: Microsoft is aware of unconstrained digital certificates from Dell Inc. for which the private keys were inadvertently disclosed. One of these unconstrained certificates could be used to issue other certificates, impersonate...