DigiCert Blog

All posts under: Privacy

  1. IoT Security: When Fiction Becomes Reality – Part II

    In my last post, I discussed the need for infosec professionals to reach out to engineering to help bridge the cultural divide and be seen as partners in IoT project success. We need to be humble and help them realize how good security practices are as vital as making sure the switches work. Otherwise, their…


  2. Google Pushes HTTPS with Google Canary Feature

    On the heels of an announcement last summer that websites using HTTPS will receive a SEO boost, Google is taking more steps to encourage a more encrypted web. Google created a version of Chrome with a feature designed to warn users when they visit unencrypted web pages. For now, this feature is only available on…


  3. IoT Security: When Fiction Becomes Reality – Part I

    It’s always interesting to observe what was once thought to be a far-fetched idea in a work of fiction become reality. Some say Arthur C. Clarke predicted the iPad with in his 1968 novel, “2001: A Space Odyssey,” when he named an electronic news source the “Newspad.” In his short story, “Solution Unsatisfactory,” some think…


  4. Superfish-like Behavior Found Again with Komodia and PrivDog

    Since last week’s Superfish revelation, researchers have unveiled additional adware and security applications that also subvert HTTPS and our system of online trust. Komodia/Lavasoft Komodia is an SSL interception module for Windows that is installing a self-signed CA root certificate onto local operating system root stores. Compounding matters, Komodia uses duplicate digital certificates across all…


  5. Lenovo’s Superfish Adware and the Perils of Self-Signed Certificates

    Late last night, reports started coming out that Lenovo was shipping PCs with man-in-the-middle adware that breaks HTTPS connections. Lenovo, like most manufacturers, ships its PCs with pre-installed software. In this case, the software is Superfish, which inserts visual advertisements into web pages such as Google search results. And while this pre-installed adware is annoying…