A fraudulent digital certificate that could be used for active phishing attacks against Google’s web properties. Using the certificate it is possible to spoof content in a classic phishing schema or perform a man-in-the-middle attack. Microsoft has been immediately started the procedure to update its Certificate Trust list (CTL) and all versions of its OSs to revoke the certificate. Microsoft also decided to revoke other two certificates for the same reason, it seems that some attacks using the first certificate have been already detected.
Source: https://thehackernews.com/2013/01/fake-turkish-digital-certificates.html