Microsoft: Google and Yahoo domains are fake domains

Η he published a security advisory entitled "Improperly Issued Digital Certificates Could Allow Spoofing" or in English "Improperly Issued Digital Certificates Could Allow Spoofing". The company chose this way to announce the countermeasures they are taking for the circulation of fakes by the National Informatics Center (NIC) Certificate Authority, a service of of India.

Microsoft google yahoo phishing

For reasons still unexplained, the California division of the NIC has issued a series of Google domains that allow for spoofing and man-in-the-middle if a program trusts certificates. Google explained that their own products do not trust the Certification Authority of India (CCA) auditor. Continuing, Google drops the ball on Microsoft stating that the Trusted Root Store includes CCA in the trusted certificates.

The Microsoft vendor reports that her service has trusted the certificates to date to update the Trusted Root Store list for all supported versions of Windows. Note that this means that users still using Windows XP are at risk.

The Microsoft bulletin lists the domains that were issued irregularly. There are 17 Google domains such as: google.com, m.gmail.com and gstatic.com and 27 Yahoo domains such as: mail.yahoo.com, profile.yahoo.com and me.yahoo.com. Finally, static.com, a cloud PaaS ( as a ).

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).