Malvertising campaign used a free certificate from Let's Encrypt

The organization says revoking certificates isn’t the answer to abuse.

By Jeremy Kirk

Cybercriminals are taking advantage of an organization that issues free digital certificates, sparking a disagreement over how to deal with such abuse.

On Wednesday, Trend Micro wrote that it discovered a cyberattack on Dec. 21 that was designed to install banking malware on computers.

The cybercriminals had compromised a legitimate website and set up a subdomain that led to a server under their control, wrote Joseph Chen, a fraud researcher with Trend.

To read the entire article, please click here.

Source: http://www.csoonline.com/

Facebooktwittergoogle_plusredditlinkedinmail