emissão de certificados fraudulentos

Microsoft warns: Fraudulent digital certificates issued for high-value websites

"Microsoft today warned that Comodo has issued nine fraudulent digital certificates to a third party whose identity could not be sufficiently validated, a scenario that could allow attackers to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all Web surfers. According to the Microsoft advisory, the fraudulent Web certificates affect the Microsoft Live service, Google’s mail system, Yahoo and Skype log-ins.

    * login.live.com
    * mail.google.com
    * www.google.com
    * login.yahoo.com (3 certificates)
    * login.skype.com
    * addons.mozilla.org
    * “Global Trustee”"

fonte: ZeroDay http://www.zdnet.com/blog/security/