CISA Releases Advisory Addressing DigiCert Certificate Revocations - 20240801001

Overview

CISA has released an advisory related to DigiCert certificate revocations.

DigiCert, a certificate authority (CA) organization, is revoking a subset of transport layer security (TLS) certificates due to a non-compliance issue with domain control verification (DCV). Revocation of these certificates may cause temporary disruptions to websites, services, and applications relying on these certificates for secure communication. DigiCert has notified affected customers and provided instructions on how to replace non-compliant certificates.

Recommendation

The WA SOC recommends administrators review relevant advisories and apply the recommended actions where relevant.

• CISA article: https://www.cisa.gov/news-events/alerts/2024/07/30/digicert-certificate-revocations

Additional References

• The Hacker News article: https://thehackernews.com/2024/07/digicert-to-revoke-83000-ssl.html