-
Listen Now
EPISODE 137
Broadcast Date:
December 21, 202031 minutes
Podcast Dec 21, 2020Root Causes 137: SolarWinds Supply Chain Attack and Digital Identity
The SolarWinds supply chain attack i includes unusual manipulations of digital identity and certificates. We explore these aspects of the attack.
-
Watch Now
60 minutes
Webinar Dec 10, 2020Q4 Sectigo Pulse: Special End of Year Edition
Join us for this special year-end edition to our Pulse webinars as we look back at 2020 and make predictions for 2021.
-
Watch Now
60 minutes
Webinar Sep 24, 2020Q3 Sectigo Pulse Webinar
Join us for our quarterly Sectigo Pulse webinar, where we'll cover the latest product and compliance news, and how they might impact you and your business.
-
Listen Now
EPISODE 106
Broadcast Date:
July 14, 202027 minutes
Podcast Jul 14, 2020Root Causes 106: Massive Intermediate Certificate Distrust on the Way
14 public CAs have to revoke intermediates and destroy their keys, putting millions of active SSL, S/MIME, and other public certificates at risk.
-
Learn More
Security Flaw to Force Revocation of Intermediates; Sectigo Unaffected
Blog Post from Sectigo
Blog Post Jul 02, 2020Google has identified intermediate certificates from public CAs that violate CABF Baseline Requirements and pose security risk. Sectigo is unaffected.
-
Listen Now
EPISODE 99
Broadcast Date:
June 12, 202029 minutes
Podcast Jun 12, 2020Root Causes 99: AddTrust Root Expiration Explained
The recent expiration of Sectigo's AddTrust legacy root caused some systems to stop working and forced some admins to keep working over the weekend.
-
Blog Post Mar 31, 2020
Happy World Backup Day!
We all have suffered from losing files or databases in some way or fashion.
-
Learn More
Let's Encrypt to Revoke Millions of Active Certificates
Blog Post from Sectigo
Blog Post Mar 02, 2020Let's Encrypt has issued millions of certificates without proper CAA checks. LE multi-domain cert users should assume they're affected.
-
Learn More
Apple Drops a Bomb on Long-life HTTPS Certificates...
News Article from Sectigo
News Article Feb 20, 2020Later this year, websites using long-life SSL/TLS certs issued after the cut-off point will throw up privacy errors in Apple's browser.
-
Learn More
Apple to Limit Accepted TLS Certificate Duration to One Year
Notification from Sectigo
Notification Feb 20, 2020This week Apple announced at the 49th CA/Browser Forum Face-to-Face that it will limit the term of accepted TLS certificates to 398 days as of September 1, 2020. Certificates issued on or after that date with term beyond 398 days will be distrusted in Apple products.
-
Learn More
Windows CryptoAPI Spoofing Vulnerability Revealed
Notification from Sectigo
Notification Jan 17, 2020This week Microsoft disclosed the existence of a critical vulnerability in how Windows operating systems validate ECC-based x.509 certificates and released patches for affected versions that are supported.
-
Listen Now
EPISODE 31
Broadcast Date:
August 12, 201911 minutes
Podcast Aug 12, 2019Root Causes 31: Using PKI to Authenticate Phone Callers
Caller ID numbers have no identity value as they are completely self-reported, enabling robocalling scams. Our hosts explain a new effort to end them.
