Recently it became known that fraudulent DigiNotar security certificates were issued as a result of an intrusion. The Dutch government has denounced trust in certificates issued by DigiNotar.
Below you can find more information about the intrusion.
New publications will be announced on Twitter.
This fact sheet is specifically focused on the potential impact on machine-to-machine (M2M) communication and the steps you can take to reduce this impact.
Microsoft has issued an update that blocks DigiNotar certificates in Windows. The update is not compulsory for Windows systems in the Netherlands, but is offered as an option.
As a result of the Diginotar breach, Fox-IT conducted an investigation into the computer systems of DigiNotar. Among other aspects, Fox-IT investigated how perpetrators accessed the network and what rogue certificates were issued. DigiNotar publishes electronic certificates including SSL, qualified and ‘PKIOverheid’ certificates. DigiNotar hosts a number of computer systems to accomplish these tasks.
Fox-IT published a preliminary report of this investigation on the 5th of September 2011.
GOVCERT.NL has published version 2.2 of factsheet "Fraudulently issued security certificate discovered".