Microsoft has issued a warning that a fraudulent SSL certificate has been issued in the name of a Finnish version of its Windows Live service. Security experts warn that older software may continue to “trust” the known bad certificate for months or even years. The certificate was issued to an unnamed man in Finland, who says he attempted to alert Finnish authorities and Microsoft officials to the problem. Microsoft says it has revoked the certificate, but experts warn attackers could use it to trick users into running malware. An email account was able to be registered for the Live.fi domain using a privileged username, which was subsequently used to request an unauthorized certificate for that domain.”]
Source: https://www.cuinfosecurity.com/microsoft-blacklists-fake-certificate-a-8021