Let this be a lesson that we all need to periodically check our certs, or at least, make sure the little lock icon is engaged when on an SSL site.
However, even checking certs may not be enough as there are hundreds of CA's out there and there's no way all of them are trustworthy. Indeed, some of them are very likely ran by intelligence agencies while others are just incompetent and issue certs to bad people (Comodo). Even some of the trustworthy ones may still be giving out certs to NSA for domestic spy purposes. Others might be forging trusted certs and selling them to known criminals just to make a quick profit. We just can't know, which is why I hate the CA model.
Bookmarks