On Wednesday, researchers uncovered three improperly issued TLS certificates for Cloudflare’s 1.1.1.1 DNS service, encrypted DNS lookup used by millions. The concern was clear: anyone with those credentials could impersonate Cloudflare’s resolver, decrypt user traffic, or redirect queries to malicious sites.
Further investigation revealed the breach was worse than initially thought. Cloudflare confirmed that Fina CA—a Microsoft‑trusted certificate authority, had in fact issued a total of twelve unauthorized certificates for 1.1.1.1 since February 2024. [Read more…]
A bill designed to curb the spread of non-consensual intimate imagery (NCII), whether real or AI-generated, is on the brink of becoming law. Known as the Take It Down Act, the legislation commands online platforms to delete such material within 48 hours of being notified by victims. It’s expected to clear the House of Representatives and head swiftly to the White House, where President Donald Trump has pledged to sign it into law, aligning with First Lady Melania Trump’s strong support.