Stolen SSL certificates allow Gmail, Skype fakes

Net security firm warns of Iranian web hack

Security outfit Comodo announced that a number of SSL certificates were issued fraudently in a hack that sought to implement fake versions of Google’s Gmail, Skype and others.

"While the involvement of two IP addresses assigned to Iranian ISPs is suggestive of an origin, this may be the result of an attacker attempting to lay a false trail," the firm posted on Comodo IT Security blog.

The firm went further to suggest that the hack attempt may amount to state-sponsored hacking.

"It does not escape notice that the domains targeted would be of greatest use to a government attempting surveillance of Internet use by dissident groups."

The certificates have since been revoked at which point the server in Iran went offline. 

"Government attacks against social networking sites are not a new phenomenon," said Comodo.

Check Also

Egnyte and Microsoft integrations improve insight and security across Microsoft 365

Egnyte has announced new integrations with Microsoft to help against data loss, address a growing …