Misissued TLS Certificates Threaten 1.1.1.1 DNS Security
Three improperly issued TLS certificates for Cloudflare's 1.1.1.1 DNS service, issued by a questionable CA, could allow attackers to decrypt traffic, exposing user data. The certificates were trusted by Windows and Microsoft Edge, raising concerns about the security of the public key infrastructure. Microsoft is taking steps to revoke the certificates, while other browsers are unaffected. The incident highlights vulnerabilities in the certificate issuance process and the need for improved oversight.