StartSSL, a web authentication authority, suspend services after a security breach

An attack on web authentication authority StartSSL has lead to them suspending their services and stopped issuing any further certificates.

From the landing page of Startssl's web site [1] they offer this information:

Due to a security breach that occurred at the 15th of June, issuance of digital certificates and related services has been suspended.
Our services will remain offline until further notice.
Subscribers and holders of valid certificates are not affected in any form.
Visitors to web sites and other parties relying on valid certificates are not affected.
We apologize for the temporary inconvenience and thank you for your understanding

The Register web site has more information on the story [2]


Chris Mohan --- Internet Storm Center Handler on Duty


105 Posts
ISC Handler
Jun 21st 2011
Site is back online

Sign Up for Free or Log In to start participating in the conversation!