PC World

Dozens of rogue self-signed SSL certificates used to impersonate high-profile sites

Dozens of self-signed SSL certificates created to impersonate banking, e-commerce and social networking websites have been found on the Web. The certificates don’t pose a big threat to browser users, ...
Searchenginejournal.com

Risks in Using Self-Signed SSL Certificates

A reader reported receiving a message in Google Search Console about a self-signed SSL certificate. Google has been sending warnings about this for years. A self-signed SSL certificate is one that is ...
PC World

Dell installs self-signed root certificate on laptops, endangering users’ privacy

Dell laptops are coming preloaded with a self-signed root digital certificate that lets attackers spy on traffic to any secure website. The reports first surfaced on Reddit and were soon confirmed by ...
Microsoft

Signed malware impersonating workplace apps deploys RMM backdoors

Signed malware backed by a stolen EV certificate deployed legitimate RMM tools to gain persistent access inside enterprise ...
Dark Reading

Malware Increasingly Being Signed With Stolen Certificates

Earlier this year, a Trojan infected a machine at software maker Blackbaud. But rather than steal money or source code or customer details, the attack targeted another valuable but often overlooked ...
Ars Technica

Question About Using Self Signed Certificates

We are running Exchange 2003 and would like to secure the web interface by using our own self signed certificate.<BR><BR>We followed the steps provided by Microsoft to generate our own self signed ...
Ars Technica

Counterfeit certificates sold online make digitally signed malware a snap | Ars OpenForum

Certificates registered in names of real corporations are surprisingly easy to come by. I'm curious about just how these certificates are being issued by major commercial CAs? I know that CA ...