Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Comodo's PrivDog breaks HTTPS security possibly worse than Superfish

Comodo's PrivDog breaks HTTPS security possibly worse than Superfish

2015/02/23

Softpedia - (International) A security researcher discovered that Comodo's PrivDog browsing privacy protection tool compromised browsing security by acting as a man-in-the-middle (MitM), intercepting and replacing all certificates with its own, causing browsers to accept every HTTPS certificate regardless of authority. The issue could affect nearly 64,000 users worldwide, and PrivDog released an update with a fix for the issue. [ed.: see Graham Cluley's post on this in the Optimal Security blog here.]

Source: http://news.softpedia.com/news/Comodo-s-PrivDog-Breaks-HTTPS-Security-Possibly-Worse-than-Superfish-473968.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:23:31