A breach of the Opera Software internal infrastructure has resulted in the theft of an expired Opera code signing certificate and used it to sign a piece of malware, package it and push it out as an update for the Opera browser.
Every business and government is dependent upon cryptographic keys and certificates to provide trust for critical communications.
A signed but malicious applet that will apparently fool even the latest Java 6 update has been discovered on a German online dictionary website infected by the g01pack exploit kit, warns security researcher and Metasploit contributor Eric Romang.
In the past few days we have heard several stories about major corporations getting hacked and their security systems completely bypassed.
China-based users and visitors of GitHub, the globally popular online source code repository, have been targeted with an man-in-the-middle attack late last Friday, reports GreatFire.org, a non-profit organization that reports on the government's online censorship efforts in China.