Using those credentials, the attacker was able to request nine digital certificates across seven domains, including: login.yahoo (NSDQ:YHOO).com, mail.google (NSDQ:GOOG).com, login.skype.com and addons.mozilla.org. According to Comodo, the situation was discovered within hours of the attack and all nine certificates were revoked -- only one of which the company said was seen being used.
The link for this article located at CRN is no longer available.