Ars Technica

Let’s Encrypt takes free “wildcard” certificates live

In July of 2017, the nonprofit certificate authority Let’s Encrypt promised to deliver something that would put secure websites and Web applications within reach of any Internet user: free “wildcard” ...
Ars Technica

Configuring Third-Party Certificates for RDP

Okay, I must be missing something here. One of the domains I manage doesn't have its own CA yet, but does have a DigiCert wildcard certificate for securing some internal HTTPS connections. Up till now ...
Bleeping Computer

NSA warns of wildcard certificate risks, provides mitigations

The U.S. National Security Agency (NSA) is warning of the dangers stemming from the use of broadly-scoped certificates to authenticate multiple servers in an organization. In a document released last ...
Threat Post

Researcher Publishes Valid Wildcard SSL Certificate

In the wake of Moxie Marlinspike’s SSL talk at Black Hat this summer, another security researcher has used the technique described in the talk to create and publish a valid wildcard certificate and ...