Security → Final Report: DigiNotar hack was Total Compromise

Final Report on DigiNotar Hack Shows Total Compromise of CA Servers

The attacker who penetrated the Dutch CA DigiNotar last year had complete control of all eight of the company's certificate-issuing servers during the operation and he may also have issued some rogue certificates that have not yet been identified. The final report from a security company commissioned to investigate the DigiNotar attack shows that the compromise of the now-bankrupt certificate authority was much deeper than previously thought.

The Fox-IT report says there are some indications in their investigation that the attacker may have issued some rogue certificates that have not been identified yet, a troubling prospect.

Full article at Kaspersky threatpost

It's a worrying thought on all the unknown out there.
In hindsight; and after the facts; is not a good way to conduct business; nor evolve and grow with your own family.

The interesting part if you can say that; is the level of control they had.....purely amazing, anyone for a free cert? However i'd wager there may have been a fund crossing palms for the certs....purely speculation of course.

This once again just goes to show the flaws with the hierarchical model of Certificate Authorities. Sadly I don't think we have developed a suitable replacement. Webs of Trust are not scalable, and have other issues.

This is going to be a key concern in the decades ahead, that so much infrastructure is built around these flawed concepts.