We're calling on all EU-based Mozillians with iOS or iPadOS devices to help us monitor Apple’s new browser choice screens. Join the effort to hold Big Tech to account!

Spletno mesto bo delovalo z omejenimi zmožnostmi, medtem ko na njem izvajamo vzdrževalna dela za vas. Če članki ne rešijo vaše težave in želite zastaviti vprašanje, naša skupnost za podporo čaka na vas na @FirefoxSupport na Twitterju in na /r/firefox na Redditu.

Avatar for Username

Iskanje po podpori

Izogibajte se prevarantski tehnični podpori. Nikoli vam ne bomo naročili, da pokličete telefonsko številko ali nam pošljete osebne podatke. Sumljivo dejavnost prijavite z gumbom »Prijavi zlorabo«.

Več o tem

Ta tema je arhivirana. Postavite prosim novo vprašanje, če potrebujete pomoč.

Yahoo "lock" showed DigiCert, then suddenly changed to Equifax

  • 4 odgovori
  • 4 imajo to težavo
  • 3 ogledi
  • Zadnji odgovor od Boudica

Boudica
Boudica
more options

This just occurred during the past few days. I never saw Equifax shown as the verification reference for the "locked" (secure) website before (the little padlock). I blocked some of the cookies on Yahoo, and now it is showing DigiCert again. Does anyone know why this would have changed? Everything else on the webpage is "normal" including the sign-in seal.

Is this a security issue??

This just occurred during the past few days. I never saw Equifax shown as the verification reference for the "locked" (secure) website before (the little padlock). I blocked some of the cookies on Yahoo, and now it is showing DigiCert again. Does anyone know why this would have changed? Everything else on the webpage is "normal" including the sign-in seal. Is this a security issue??

Izbrana rešitev

The log in page has a different certificate issuer that the Yahoo main page.

  • Login page: DigiCert High Assurance CA-3
  • Yahoo main page: Equifax Secure Certificate Authority

That might base caused by adding support for a secure connection to the main Yahoo page at a later time and choosing to use a certificate from a different CA. There is nothing to worry about although you would expect an EV certificate from a large company like Yahoo for at least the log in page to increase the trust and confirm the identity.

Preberite ta odgovor v kontekstu 👍 1

Vsi odgovori (4)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Did you check via the right-click context menu on the web page if that web page possibly got opened in an (i)frame?

Were you using a bookmark or did you navigate to this page starting with the Yahoo home page?

Boudica
Boudica Lastnik vprašanja
more options

This occurs when I go to the Yahoo website, and from there I click on the "sign in" as I have always done. Today, the website (padlock) showed Equifax, and when I went to the "sign in" menu, it showed DigiCert. Apparently both of them are "secure" (??).

Thank you for the suggestion, cor-el.

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Izbrana rešitev

The log in page has a different certificate issuer that the Yahoo main page.

  • Login page: DigiCert High Assurance CA-3
  • Yahoo main page: Equifax Secure Certificate Authority

That might base caused by adding support for a secure connection to the main Yahoo page at a later time and choosing to use a certificate from a different CA. There is nothing to worry about although you would expect an EV certificate from a large company like Yahoo for at least the log in page to increase the trust and confirm the identity.

Boudica
Boudica Lastnik vprašanja
more options

Thank you cor-el, for the explanation. I was concerned since I had not previously noted any reference to Equifax. Your help is most sincerely appreciated.