Apple, other browser makers block certificate used for surveillance in Kazakhstan
Mike PetersonCredit: Apple
A number of browser makers, including Apple, have banned a root certificate that was being used by the Kazakhstan government to spy on its citizens.
The certificate was being used to intercept and decrypt HTTPS traffic from residents in Nur-Sultan, the capital citizen of Kazakhstan. On Dec. 6, local internet service providers were forced by the government to block foreign websites unless users had the certificate installed on their devices.
Apple, Google, Microsoft, and Mozilla on Friday banned the certificate in their respective browsers, ZDNet reported. That means Safari, Chrome, Edge, and Firefox have all been patched, preventing the use of the certificate to perform main-in-the-middle attacks intercepting user data.
As justification for the certificate, Kazakh officials said they were carrying out cybersecurity training in response to a spike in cyberattacks during the coronavirus pandemic.
The move by the browser makers comes more than a year after they all blocked a similar government-mandated certificate in August 2019.
Charles Martin
William Gallagher
Andrew Orr
Malcolm Owen
Christine McKee
Chip Loder
6 Comments
What will Borat think of this being done to his Glorious Kazakhstan?
Great, Apple. Now do the same thing for China.
Funny that the only reference most people know about the eighth largest country in the world is an outlandish fake comedy character.