Comodo Accuses Iran Over Fake SSL Certificates

Browser maker Mozilla has updated Firefox after hackers issued rogue SSL certificates across seven different web domains.

A hacker had created an account with SSL certificates provider Comodo and had issued fake SSL certificates for websites like Google, Yahoo, Microsoft and Skype. Fake SSL certificates could fool users into believing that a malicious website they were visiting was genuine.

“This could deceive them into revealing personal information such as usernames and passwords. It may also deceive users into downloading malware if they believe it’s coming from a trusted site,” Mozilla said in a blog post.

The company said that it had updated all existing versions of Firefox to reject the fake SSL certificates issued. Comodo has confirmed that it revoked the fake certificates as soon as it was made aware of the attack.

Comodo revealed that it had traced the attack to an IP address in Iran and concluded that the attack was state-driven.

“The perpetrator has executed its attacks with clinical accuracy. The Iranian government has recently attacked other encrypted methods of communication. All of the above leads us to one conclusion only: that this was likely to be a state-driven attack,” the company said in its fraud report.