Last week we told you about hackers getting into the networks of the Dutch company DigiNotar. While inside, the hackers were able to create fake digital certificates for Google, which allowed them to, in theory, spy on anyone using Google (Google quickly blocked those certificates, update your browser today please). At the time, the damage was thought to be confined to Google but it turns out it was
SO MUCH WORSE.
Over 500 fake certificates were issued from the Dutch company, which has affected a large part of the Dutch government, including their online tax filing system. Someone claiming to be the hacker claims to have created fake certificates from four other organizations that issue them.
There are about 650 organizations that have this authority but the system is only as good as the one with the worst security.