KPN/Getronics, the largest CA in the Netherlands, also has been breached and, for now, has suspended issuing digital certificates. KPN discovered the breach of a PKI-related Web server with a distributed denial-of-service tool. The company said existing certificates are valid, but that the firm is having the potential breach investigated and halted issuing certificates as a precaution. With the string of CA breaches and the apparent targeting of CAs by Duqu, it’s a bad time to be a CA.”]