Enterprise security is vital at any kind of organization, but in few places is the need as readily apparent as banks. After all, the average bank has access to the most privileged information out there — namely, payment data, as well as direct access to customer accounts. That data is gold to hackers.
On July 2, Google became aware of fraudulent certificates that were incorrectly issued to Google-owned domain names. The certificates were issued by National Informatics Centre (NIC) of India, which is a subordinate certification authority (CA) to Indian Controller of Certifying Authorities (India CCA). The miss-issued certificates could have been used to spoof content, perform phishing attacks or perform man-in-the-middle (MITM)