Hi every one As all of you must have seen some alerts to download latest
update on your computers because Microsoft has issued a Security Advisory
warning that fraudulent digital certificates were issued by the Comodo
* login.yahoo.com (3 certificates)
* "Global Trustee"
The major issue is that Comodo is a trusted root authority on all
default Windows and OS X installations. This means that an attacker could
easily masquerade a malicious website as one of the above with the HTTPS
This kind of power would have any internet miscreant drooling over the
opportunity to construct phishing sites, perform man-in-the-middle attacks,
and any other content-spoofing attack that can be dreamed up.
Trust is transitively passed down the certificate chain, where as compromise at
any level breaks the chain completely -- and every chain has its weakest link.
The suggestion from experts are to enable certificate revocation checking in your browser