PCWorld: A self-described 21-year-old Iranian student who uses the handle “Comodohacker” has claimed responsibility for hacking Dutch certificate authority DigiNotar in order to obtain fraudulent SSL certificates for Google websites. He said that he intended the hack to publish the Dutch for killing Muslims in Srebrenica in the Bosnian War. He also claims to have hacked into four other companies that issue SSL certificates.
DigiNotar’s auditor, Fox-IT, released a report yesterday which found that the company had issued approximately 500 fraudulent certificates. More than 300,000 unique users, most of them Iranian, may have accessed Google sites using the fraudulent certificates, meaning their interactions with those sites could have been monitored by hackers.