Fake Website Claims To Be Part Of Google | Improper Certificate ID Issued

Web browser makers have rushed to fix a security lapse that could have allowed cyber thieves to impersonate Google+

The loophole involved an exploit of ID credentials that browsers use to ensure a website is who it claims to be.

By using fake credentials, criminals could have created a website that purported to be part of the Google+ social media network.

An investigation by TurkTrust revealed that in August 2011 it twice accidentally issued the wrong type of security credential, a form of identification known as an intermediate certificate.

If you use Internet Explorer or Mozilla’s Firefox make sure you update to the latest version.  The fix has been included in the latest offerings of both browsers.

Enhanced by Zemanta