certificates

Let’s Encrypt works toward post-quantum certificates at web scale

authentication, certificate authority, certificates, Encryption, Let's Encrypt, News, quantum computing /

Let’s Encrypt works toward post-quantum certificates at web scale 2026-06-05 at 15:49 By Anamarija Pogorelec Let’s Encrypt plans to pursue a post-quantum-safe Web PKI through Merkle Tree Certificates (MTCs), a new approach that adds post-quantum authentication to the web without sacrificing the speed and reliability that have made TLS universal. The project is targeting late […]

Let’s Encrypt works toward post-quantum certificates at web scale Read More »

OpenAI Hit by TanStack Supply Chain Attack

AI, Artificial Intelligence, certificates, OpenAI, supply chain attack, Supply Chain Security, TanStack /

OpenAI Hit by TanStack Supply Chain Attack 2026-05-15 at 14:32 By Ionut Arghire Two employee devices were compromised in the attack, and credential material was stolen from OpenAI code repositories. The post OpenAI Hit by TanStack Supply Chain Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

OpenAI Hit by TanStack Supply Chain Attack Read More »

Zombie linkages are keeping expired domains trusted for years

certificates, DNS, domain information, News, research /

Zombie linkages are keeping expired domains trusted for years 2026-05-15 at 08:24 By Sinisa Markovic Domains expire, get transferred, and return to the market every day. The systems connected to those domains can continue trusting the original owner long after control has changed. Researchers at USC and the University of Twente examined this problem in

Zombie linkages are keeping expired domains trusted for years Read More »

DigiCert Revokes Certificates After Support Portal Hack

certificates, Data Breaches, DigiCert, Malware /

DigiCert Revokes Certificates After Support Portal Hack 2026-05-04 at 16:22 By Ionut Arghire Hackers delivered malware via a customer chat channel, infected an analyst’s system, and accessed the internal support portal. The post DigiCert Revokes Certificates After Support Portal Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

DigiCert Revokes Certificates After Support Portal Hack Read More »

Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches

certificates, Microsoft, News, tips, Windows /

Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches 2026-04-03 at 14:57 By Anamarija Pogorelec Microsoft’s Secure Boot certificates, issued in 2011, are approaching expiration in 2026. To help IT administrators track whether devices have received replacement certificates, Microsoft has added new status indicators to the Windows Security app, under Device

Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches Read More »

Certificate lifespans are shrinking and most organizations aren’t ready

certificates, cybersecurity, Don't miss, Encryption, Features, GlobalSign, Hot stuff, News, PKI, quantum computing, strategy /

Certificate lifespans are shrinking and most organizations aren’t ready 2026-03-16 at 08:32 By Mirko Zorz The push for shorter TLS certificate lifespans has been building for years. It started with Google’s internal push toward 90-day certificates, which gained traction inside the industry before resistance from enterprise customers slowed things down. Then Apple proposed 47-day certificates,

Certificate lifespans are shrinking and most organizations aren’t ready Read More »

Google Working Towards Quantum-Safe Chrome HTTPS Certificates 

certificates, Chrome, Data Protection, HTTPS, Quantum, Quantum secure /

Google Working Towards Quantum-Safe Chrome HTTPS Certificates  2026-03-02 at 13:47 By Ionut Arghire The internet giant is developing an evolution of the certificates based on Merkle Tree Certificates (MTCs). The post Google Working Towards Quantum-Safe Chrome HTTPS Certificates  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Google Working Towards Quantum-Safe Chrome HTTPS Certificates  Read More »

Microsoft revokes 200 certs used to sign malicious Teams installers

certificates, Don't miss, Hot stuff, Microsoft, Microsoft Teams, News, Ransomware /

Microsoft revokes 200 certs used to sign malicious Teams installers 2025-10-17 at 15:59 By Zeljka Zorz By revoking 200 software-signing certificates, Microsoft has hampered the activities of Vanilla Tempest, a ransomware-wielding threat actor that has been targeting organizations with malware posing as Microsoft Teams. “In this campaign, Vanilla Tempest used fake MSTeamsSetup.exe files hosted on

Microsoft revokes 200 certs used to sign malicious Teams installers Read More »

Microsoft Revokes Over 200 Certificates to Disrupt Ransomware Campaign

certificates, disrupted, Microsoft, Ransomware, Rhysida, Vanilla Tempest, Vice Society /

Microsoft Revokes Over 200 Certificates to Disrupt Ransomware Campaign 2025-10-16 at 17:45 By Eduard Kovacs The tech giant attributed the attacks to Vanilla Tempest, also known as Vice Spider and Vice Society. The post Microsoft Revokes Over 200 Certificates to Disrupt Ransomware Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

Microsoft Revokes Over 200 Certificates to Disrupt Ransomware Campaign Read More »

What EU’s PQC roadmap means on the ground

certificates, cybersecurity, Don't miss, Encryption, EU, F5 Networks, Features, Hot stuff, News, quantum computing, regulation, standards /

What EU’s PQC roadmap means on the ground 2025-07-10 at 09:11 By Mirko Zorz In this Help Net Security interview, David Warburton, Director at F5 Labs, discusses how the EU’s Post-Quantum Cryptography (PQC) roadmap aligns with global efforts and addresses both the technical and regulatory challenges of migrating to PQC. Warburton also outlines practical steps

What EU’s PQC roadmap means on the ground Read More »

Connectwise is rotating code signing certificates. What happened?

certificates, ConnectWise, CyberProof, Don't miss, Hot stuff, LUMU, News, security update /

Connectwise is rotating code signing certificates. What happened? 2025-06-11 at 17:48 By Zeljka Zorz Connectwise customers who use the company’s ScreenConnect, Automate, and ConnectWise RMM solutions are urged to update all agents and/or validate that the update has been deployed by Friday, June 13 at 8:00 p.m. ET, or risk disruptions. The reason for the

Connectwise is rotating code signing certificates. What happened? Read More »

Chrome to Distrust Chunghwa Telecom and Netlock Certificates

CA, certificates, Chrome, Chunghwa, Data Protection, Google, Netlock, remove, TLS /

Chrome to Distrust Chunghwa Telecom and Netlock Certificates 2025-06-02 at 14:16 By Ionut Arghire Patterns of concerning behavior led Google to remove trust in certificates from Chunghwa Telecom and Netlock from Chrome. The post Chrome to Distrust Chunghwa Telecom and Netlock Certificates appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Chrome to Distrust Chunghwa Telecom and Netlock Certificates Read More »

SSL.com Scrambles to Patch Certificate Issuance Vulnerability 

certificates, SSL.com, Vulnerabilities, vulnerability /

SSL.com Scrambles to Patch Certificate Issuance Vulnerability  2025-04-22 at 15:48 By Ionut Arghire A vulnerability in SSL.com has resulted in nearly a dozen certificates for legitimate domains being wrongly issued. The post SSL.com Scrambles to Patch Certificate Issuance Vulnerability  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

SSL.com Scrambles to Patch Certificate Issuance Vulnerability  Read More »

Why shorter SSL/TLS certificate lifespans matter

certificates, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, News, opinion, Sectigo, SSL/TLS /

Why shorter SSL/TLS certificate lifespans matter 2025-04-15 at 09:31 By Help Net Security Digital certificates are the unsung heroes of the internet, silently verifying that the websites, apps, and services you use are legit and your data is safe. For years, we’ve leaned on certificates with maximum validity term stretching for months and, in some

Why shorter SSL/TLS certificate lifespans matter Read More »

New Issuance Requirements Improve HTTPS Certificate Validation

certificates, Data Protection, Google, HTTPS /

New Issuance Requirements Improve HTTPS Certificate Validation 2025-03-28 at 13:31 By Ionut Arghire HTTPS certificate issuance now requires Multi-Perspective Issuance Corroboration and linting to improve validation. The post New Issuance Requirements Improve HTTPS Certificate Validation appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

New Issuance Requirements Improve HTTPS Certificate Validation Read More »

Apple’s 45-day certificate proposal: A call to action

apple, certificates, cybersecurity, Don't miss, Expert analysis, Expert corner, Hot stuff, identity, News, opinion, Venafi /

Apple’s 45-day certificate proposal: A call to action 2024-11-08 at 08:00 By Help Net Security In a bold move, Apple has published a draft ballot for commentary to GitHub to shorten Transport Layer Security (TLS) certificates down from 398 days to just 45 days by 2027. The Apple proposal will likely go up for a

Apple’s 45-day certificate proposal: A call to action Read More »

US Gov Removing Four-Year-Degree Requirements for Cyber Jobs

certificates, degree requirements, Government, Harry Coker, Management & Strategy, skills shortage /

US Gov Removing Four-Year-Degree Requirements for Cyber Jobs 2024-09-06 at 20:31 By SecurityWeek News The US government will remove “unnecessary degree requirements” in favor of skills-based hiring to help fill 500,000 open cybersecurity jobs. The post US Gov Removing Four-Year-Degree Requirements for Cyber Jobs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

US Gov Removing Four-Year-Degree Requirements for Cyber Jobs Read More »

Shorter TLS certificate lifespans expected to complicate management efforts

certificate authority, certificates, cybersecurity, News, quantum computing, report, Venafi /

Shorter TLS certificate lifespans expected to complicate management efforts 2024-08-09 at 07:01 By Help Net Security 76% of security leaders recognize the pressing need to move to shorter certificate lifespans to improve security, according to Venafi. However, many feel unprepared to take action, with 77% saying the shift to 90-day certificates will mean more outages

Shorter TLS certificate lifespans expected to complicate management efforts Read More »

DigiCert Revoking 83,000 Certificates of 6,800 Customers

certificates, DigiCert, Incident Response /

DigiCert Revoking 83,000 Certificates of 6,800 Customers 2024-08-01 at 12:46 By Eduard Kovacs DigiCert has started revoking 83,000 certificates impacted by a validation issue, but critical infrastructure customers are asking for more time. The post DigiCert Revoking 83,000 Certificates of 6,800 Customers appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed

DigiCert Revoking 83,000 Certificates of 6,800 Customers Read More »

Exploring the root causes of the cybersecurity skills gap

Artificial Intelligence, automation, certificates, cybersecurity, Don't miss, education, Features, Hot stuff, News, opinion, skill development, Skillsoft, training /

Exploring the root causes of the cybersecurity skills gap 2024-07-09 at 07:01 By Mirko Zorz In this Help Net Security interview, Koma Gandy, VP of Leadership and Business at Skillsoft, addresses the critical aspects of the cybersecurity skills gap, the need for diverse talent and continuous upskilling in areas like AI and cloud computing. Gandy

Exploring the root causes of the cybersecurity skills gap Read More »

Scroll to Top