Signature Detail

Short Name	SSL:UTN-USERFIRST-HARDWARE
Severity	Critical
Recommended	Yes
Recommended Action	Drop
Category	SSL
Keywords	UTN-USERFirst-Hardware phishing untrusted comodo ssl certificate
Release Date	2011/03/23
Update Number	1887
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SSL: Untrusted Certificate (UTN-USERFirst-Hardware)

This signature detects SSL certificates issued by an untrusted source, UTN-USERFirst-Hardware. This is most commonly used to enhance the authenticity of a phishing attack, fooling the victim into thinking a fake site is valid. Accessing sites using these certificates instead of the valid issuer can result in a complete decryption of the SSL session by an attacker. Several popular websites, including Yahoo, Google, Gmail, MSN Live, Mozilla and Skype are affected.

References

URL: http://www.microsoft.com/technet/security/advisory/2524375.mspx

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

SSL: Untrusted Certificate (UTN-USERFirst-Hardware)

References