This is an interesting article. Many users install software like Symantec to help keep them safe, and here, there was a flaw that would allow an unauthenticated attacker to retrieve SSL Certificates, but not only that, reissue or revoke those certificates.
The flaw was discovered by an IT consultant from Cloud Harmonics, and Symantec asked the consultant not to disclose the flaw as it would take Symantec almost two years to fix the issue.
Mauchel Barthelemy says
Adding more to the problem? Maybe Google was right about Symantec after all. Google recently accused Symantec of misissuing tens of thousands of certificates for encrypted web connections. Symantec has been a pioneer in IT Security company for many years, so the company needs to do something to address these as soon as possible. The last thing people would want to see in the cyber security industry is for an organization as reputable as Symantec to start being viewed as not reliable enough.