Skip to main content
  1. Home
  2. Web
  3. News

Google, Mozilla blacklists China’s web registrar over breach

By

some chinese websites to be banned in firefox chrome browsers after security breach chinainternetsecurity
Nmedia/Shutterstock
Google and Mozilla have just announced that they will blacklist digital certificates from the China Internet Network Information Center, the country’s main Internet agency.

CNNIC oversees China’s Internet infrastructure. This means that Google Chrome and Mozilla Firefox will soon stop accepting certificates from most websites with the .cn domain. With the ban, Chrome and Firefox users will receive a pop-up that alerts them to possible security risks.

Recommended Videos

The move comes about two weeks after a security breach that involved unauthorized digital certificates for Google domains such as Gmail. On March 20, Google found that MCS Holdings, an Egyptian IT company, misused certificates. MCS Holdings obtained its intermediate certificate from CNNIC.

Google said that MCS used the certificates for a man-in-middle proxy. According to CNNIC, they had agreed to issue a certificate to MCS with the condition that the company would only issue certificates for the domains they have registered. MCS instead intercepted connections by pretending to be the intended destination for users. Google called the incident “a serious breach” because all major browsers and operating systems recognized CNNIC certificates.

“This explanation is congruent with the facts. However, CNNIC still delegated their substantial authority to an organization that was not fit to hold it,” said Adam Langley, a security engineer at Google.

To help users adjust to the changes, Google has provided a grace period. The company said that it will recognize CNNIC’s existing certificates for a “limited time.” This exemption will only be extended to websites that are included in Google’s “whitelist.”

CNNIC, which conducted an investigation of its own after the breach, criticized Google’s move. “The decision that Google has made is unacceptable and unintelligible to CNNIC, and meanwhile CNNIC sincerely urge that Google would take users’ rights and interests into full consideration,” the agency wrote in its website.

In spite of the ban, Google has indicated that it would be willing to reinstate CNNIC at a later time. “While neither we nor CNNIC believe any further unauthorized digital certificates have been issued, nor do we believe the misissued certificates were used outside the limited scope of MCS Holdings’ test network, CNNIC will be working to prevent any future incidents,” Google wrote. “We applaud CNNIC on their proactive steps, and welcome them to reapply once suitable technical and procedural controls are in place.”

Topics
Christian Brazil Bautista
Christian Brazil Bautista
Former Digital Trends Contributor
Christian Brazil Bautista is an experienced journalist who has been writing about technology and music for the past decade…
A new Best Buy sale just started – our 11 favorite deals
Presidents Day sales with electonic devices packed in open boxes.

If you've been looking to do some shopping recently but haven't found the best time, you're in luck! Best Buy has just started an excellent weekend sale with many different products, but, to help save you some hassle, we've collected our 11 favorite deals from the bunch, ranging from robot vacuums to gaming laptops. So, without further ado, let's dive right in!
Shark ION Robot RV761 -- $143, was $260

If you're looking to dip your toes into robot vacuums without spending a lot, the Shark ION Robot RV761 falls within the Shark Ion 700 range and has a few nifty features, making it a good starting robot vacuum. For example, it has a triple brush mechanism that makes it great for picking up pet hair and does relatively well on carpeted flooring. It also has its own that allows you to schedule and control it to fit your schedule, and it comes with sensing technology that lets it avoid bumping into things. On the other hand, it doesn't have home mapping, which is great for the privacy-minded, but that does mean the occasional bump does happen. The Shark ION RV761 has about 90 minutes of battery life before it takes itself in for recharging.

Read more
When is Prime Day 2023? Dates confirmed for the shopping event
Best Prime Day 2022 Deals graphic with multiple products.

After weeks of speculation, we finally know when Prime Day 2023 is kicking off. Amazon has announced that the event will start July 11 at 3AM ET and will run through July 12. As always, Prime members can score some fantastic deals from the sale with popular brands like Peloton, Victoria's Secret, YETI, and Sony just some of the names being touted by Amazon as featuring in the big sale. Members will also be able to shop more deals on small business products than ever before too. As always, expect great discounts on Amazon-owned properties like Kindles, Ring doorbells, Amazon Echo units, and so much more. It's the sale we've all been waiting for since Black Friday.

The Prime Day deals promise to drop every 30 minutes during select periods with deep discounts expected. Select discounts on other Amazon-related things are already available such as 20% off in-store purchases at when you spend $50 or more and . It's a small taste of what is no doubt to come with other Amazon properties likely to see discounts.

Read more
Another big sale is happening at the same time as Prime Day
A variety of electronic devices in open boxes.

Target just revealed that Target Circle Week will run from July 9 to July 15, overlapping with Amazon's Prime Day that's scheduled for July 11 to July 12.

The big sale event will be open to members of the retailer's Target Circle loyalty program, who will be able to receive discounts of up to 50% for certain items. If you're not yet a member, don't worry -- you can join at any time, and membership is free. Once you've signed up, you'll be able to earn 1% from every purchase to redeem at a later time, access exclusive deals, and get 5% off for your birthday, among other benefits.

Read more