Skip to comments.Microsoft Fights Flame Malware With Certificate Killer
Posted on 06/14/2012 1:25:27 PM PDT by OldEarlGray
Microsoft identified the culprit Sunday when it released a security bulletin warning that "unauthorized digital certificates could allow spoofing." Its related Windows update revokes trust for three fraudulent certificate authority (CA) certificates: two Microsoft Enforced Licensing Intermediate PCA certificates, as well as the Microsoft Enforced Licensing Registration Authority CA.
The revelation that Flame included the ability to pass off fake Windows updates is yet more evidence of that Flame, in Gostev's words, "is one of the most interesting and complex malicious programs we have ever seen." Indeed, the certificate flaw gave Flame's creators a way to attack all versions of Windows.
(Excerpt) Read more at informationweek.com ...
At least as amusing as a Chinese Fire-drill, with the entire M$Certeefied “Windows Community” running around the service-bus, can be.
Mint or Ubuntu, mostly.
Belief that you are invulnerable can make you vulnerable.
My local relatives are all running various flavors of Windoz though, so I have to support it as well. I can't seem to convince anyone that free is better. I did get one to download OpenOffice when his 12 year old pirated copy of Word wouldn't open a document someone had sent him. Sigh.
I don’t believe *nix is invulnerable. I do believe that security through obscurity is much more vulnerable than security through mathematics and many vigilant eyes. You are free to pay for systems where other values obtain.