A 21-year-old Iranian hacker obtained high-value security certificates issued by Comodo. Comodo CTO Robin Alden acknowledged that two other registration authorities — the companies that vet requests for certificates — had compromised. The attack calls into question the ability of certificate authorities to accurately check the identity of persons requesting a certificate. The Comodo hacker requested certificates for major domains, such as Microsoft’s Live and Google’s Gmail, almost guaranteeing that the requests would be noticed, says Paul Mutton.”]
Source: https://www.darkreading.com/attacks-breaches/comodo-hack-highlights-chinks-in-net-infrastructure