In 2011, the certificate authority GlobalSign reported that a cybercriminal managed to hack into their user-facing website. Upon discovery, GlobalSign stopped issuing new certificates and asked a security company to investigate whether the cybercriminal had infiltrated their certificate issuing infrastructure as well. They needed to make sure the cybercriminal did not make any false certificates during the attack. Why was it important that GlobalSign took steps to prevent the creation of false certificates?

Cybercriminality is one case many firms are on the lookout for. An attack on an organization classified information (which is called hacking)can put the organization into serious challenges which may elongate to financial challenges too. Globalsign had to stop using new certificate because the cybercriminal could find his way into existing certificate and use it against the organization. He would create fake certificates and link it to his own private key and use the certificates during DNS spoofing attacks.