An anonymous reader writes "Google, Mozilla and now Microsoft are warning of fake certificates apparently issued using a Comodo certificate, which is trusted by all browsers. Sadly this comes just after large sites like Facebook and Twitter enabled users to opt in to SSL by default. The affected host names are www.google.com, login.live.com, mail.google.com, login.yahoo.com , login.skype.com and addons.mozilla.com. All popular domains that may now be impersonated using the fake certificates. As the ISC diary puts it: Turing the SSL trust pyramid into a stinking pile of doo"
Link to Original Source