Security professionals are doing little to protect their organizations from the dangers of untrusted certificates and certificate authorities (CAs) New research by Venafi surveyed 333 attendees to the Black Hat USA conference in Las Vegas last month. Ninety percent of respondents to Venafi’s survey expect that within two years a “leading CA” will be breached. Most would rely on manual processes, 23 percent would hire an insider response firm to replace keys and certificates, 24 percent said they didn’t know what they would do.”]
Source: https://www.darkreading.com/cloud/what-you-should-but-don-t-do-about-untrusted-certs-cas