Opera employee Mark 'Tarquin' Wilton-Jones took to the comment section of the original breach notification and has shared that:
- Opera 12 source code was not stolen
- The malware did not affect the Opera installation itself
- The certificate used was old and expired, but the checking of the certificate is controlled by the OS, not by them.
When asked why it took them a week to notify potentially affected users of the breach, Wilton-Jones explained that it took them some time to determine the extent of the attack and what had actually happened. He also noted that they hoped to follow the notification with the release of a new version of Opera, but that they still haven't managed to do so because of technical issues.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.