Severity Rating:
Revision Note: V1.1 (January 14, 2013): Corrected the disallowed certificate list effective date to "Monday, December 31, 2012 (or later)" in the FAQ entry, "After applying the update, how can I verify the certificates in the Microsoft Untrusted Certificates Store?"
Summary...
Severity Rating:
Revision Note: V5.0 (September 19, 2011): Revised to announce the rerelease of the KB2616676 update. See the Update FAQ in this advisory for more information.
Summary: Microsoft is aware of active attacks using at least one fraudulent digital certificate issued by DigiNotar, a...
Hello,
Today we released Security Advisory 2798897 to notify customers that we are aware of active attacks using a fraudulent digital certificate issued by TURKTRUST Inc. To help protect customers, we have updated the Certificate Trust List (CTL) to remove the trust of the certificates causing...
advisory
attacks
certificate
communications
customers
digital
fraudulent
management
protection
security
software
trustlist
trustworthy
turktrust
update
windows server
windows vista
windows xp
Revision Note: V1.0 (January 3, 2013): Advisory published.
Summary: Microsoft is aware of active attacks using one fraudulent digital certificate issued by TURKTRUST Inc., which is a CA present in the Trusted Root Certification Authorities Store. This fraudulent certificate could be...
Revision Note: V1.2 (September 11, 2012): Clarified that applications and services that use RSA keys for cryptography and call into the CertGetCertificateChain function could be impacted by this update. Examples of these applications and services include but are not limited to encrypted email...
Revision Note: V3.0 (September 6, 2011): Revised to announce the release of an update that addresses this issue.
Summary: Microsoft is aware of active attacks using at least one fraudulent digital certificate issued by DigiNotar, a certification authority present in the Trusted Root...
Microsoft’s investigation into the scope and impact of the DigiNotar compromise has continued over the holiday weekend. We’ve now confirmed that spoofed certificates for *.microsoft.com and *.windowsupdate.com are among those issued by the Dutch firm.
Users of Vista and later...
advisory
certificates
cybersecurity
diginotar
digital certificates
fraudulent
investigation
microsoft
protection
safety
security
server 2003
spoofed certificates
trustworthy computing
untrusted store
user protection
vista
windows update
Revision Note: V4.0 (May 10, 2011): Announced the release of an update for Windows Mobile 6.x devices. Advisory Summary:Microsoft is aware of nine fraudulent digital certificates issued by Comodo, a certification authority present in the Trusted Root Certification Authorities Store, on all...
advisory
certificate authority
certification authority
comodo
cybersecurity
digital certificates
fraudulent
internet explorer
man-in-the-middle
phishing
release note
security
spoofing
trusted root
update
vulnerability
windows
windows mobile
windows phone
zune hd
Revision Note: V2.0 (April 19, 2011): Added Windows Mobile 6.x, Windows Phone 7, Microsoft Kin, and Zune devices to affected software and devices.Summary: Microsoft is aware of nine fraudulent digital certificates issued by Comodo, a certification authority present in the Trusted Root...
advisory
attacks
authority
certificates
explorer
fraudulent
internet
kin
man-in-the-middle
microsoft
mobile
phishing
security
spoofing
trusted
update
windows
zune
Revision Note: V2.0 (April 19, 2011): Added Windows Mobile 6.x, Windows Phone 7, Microsoft Kin, and Zune devices to affected software and devices. Advisory Summary:Microsoft is aware of nine fraudulent digital certificates issued by Comodo, a certification authority present in the Trusted Root...
advisory
certification
cybersecurity
digital certificates
fraudulent
internet explorer
kin
malware
microsoft
phishing
security
spoofing
trust
windows mobile
windows phone
zune
Revision Note: V1.0 (March 23, 2011): Advisory published.Summary: Microsoft is aware of nine fraudulent digital certificates issued by Comodo, a certification authority present in the Trusted Root Certification Authorities Store on all supported versions of Microsoft Windows. Comodo advised...
advisory
certification authority
cybersecurity
digital certificates
fraudulent
internet explorer
microsoft
phishing
security
spoofing
trusted root
windows
Hello - Today we're releasing Link Removed due to 404 Error, to address nine fraudulent digital certificates issued by Comodo Group Inc, a root certificate authority. Comodo has since revoked the digital certificates. This is not a Microsoft security vulnerability; however, one of the...
advisory
certificates
customer alerts
fraudulent
internet explorer
live id
microsoft
mitigation
phishing
privacy
security
trustworthy computing
update
user protection
windows