FBI probes breach into Internet security firm

March 31, 2011
Cyber Security, FedCyber Wire
No Comment

via GMA News

A security breach that affected digital certificates issued by Internet security company Comodo has prompted an investigation by the Federal Bureau of Investigation (FBI).

The FBI is focusing on how a hacker got a New Jersey, US-based company to issue the fraudulent certificates, tech site CNET reported.

Italian law enforcement is also involved in the investigation, CNET quoted Comodo CEO Melih Abdulhayoglu as saying.

“It is an ongoing investigation,” Abdulhayoglu was quoted as saying.

Last week, Comodo said it suspects an Iran state-driven attack behind the issuance of fake online certificates that targeted major email and online sites including those of Google, Yahoo, Skype, Mozilla, and Microsoft last week.

It said that the incident, involving the issuance of nine fraudulent Secure Sockets Layer (SSL) certificates, took placelast March 15.

“The circumstantial evidence suggests that the attack originated in Iran. The perpetrator has focused simply on the communication infrastructure (not the financial infrastructure as a typical cyber-criminal might). The perpetrator can only make use of these certificates if it had control of the DNS infrastructure. The perpetrator has executed its attacks with clinical accuracy. The Iranian government has recently attacked other encrypted methods of communication. All of the above leads us to one conclusion only:- that this was likely to be a state-driven attack,” it said.

More here.