(The Hosting News) – Fears are now increasing following a July breach of DigiNotar, a Dutch certificate authority. Most recently, a report by FOX-IT (an online security company) revealed that the massive SSL leak could have affected and compromised Gmail accounts for around 300 hundred thousand people in Iran.
And the news doesn’t end there. According to reports, Dutch officials said the breach may have effected internet giants including Facebook, Twitter, the U.S. CIA, WordPress, and Microsoft.
In the Netherlands, according to an AP report, the government is looking into July’s attack, examining whether “criminal negligence” could have played a role in DigitNotar’s response to the attack (An initial report in the country showed than DigiNotar’s security may not have been suitable).
Upon facing the breach in July, the certificate authority worked to revoke the SSLs. However, the amount of SSLs leaked were initially believed to be much less than currently thought. Now the statistic is expected to be closer to 500. SSL certificates play a pivotal role on the worldwide web, allowing for transfers of digitally encrypted files among online sites.
Meanwhile, IDG News reported that a hacker in Iran who goes by “Comodohacker” has claimed responsibility for the breach. The hacker is also threating more attacks.
Just last week, internet giants including Google and Mozilla stepped up efforts to fight against the stolen SSLs. Google’s Chrome web browser worked to block the certificates while Mozilla issued updates for its Firefox web browser.
Discussing the DigitNotar attack last week, Mozilla stated, “Users on a compromised network could be directed to sites using a fraudulent certificate and mistake them for the legitimate sites. This could deceive them into revealing personal information such as usernames and passwords.”