The attacker who penetrated the Dutch CA DigiNotar last year had complete control of all eight of the company's certificate-issuing servers during the operation and he may also have issued some rogue certificates that have not yet been identified. The final report from a security company commissioned to investigate the DigiNotar attack shows that the compromise of the now-bankrupt certificate authority was much deeper than previously thought.Report: http://www.rijksoverheid.nl/bestanden/d ... update.pdf
...
https://threatpost.com/en_us/blogs/fina ... ers-103112
ComodoHacker statements: http://pastebin.com/u/ComodoHacker
