Thursday, November 10, 2011

Microsoft Security Advisory 2641690 Addresses Fraudulent Digital Certificates

Microsoft released Security Advisory 2641690 which relates to the revocation of trust in an Intermediate Certificate Authority, DigiCert Sdn. Bhd. (Digicert Malaysia). 

The subordinate CA issued 22 certificates with weak 512 bit keys.  The subordinate CA has also issued certificates without the appropriate usage extensions or revocation information. to a Windows kernel issue related to the Duqu malware, a trojan that injects malicious code into other processes.

If you do not have automatic updating enabled, the update is available by checking for updates or can be downloaded from KB Article 2641690.


References





Remember - "A day without laughter is a day wasted."
May the wind sing to you and the sun rise in your heart...

No comments: