Microsoft has begun to push a Windows Phone 7 security update. Some users began to receive the update alert yesterday, May 3. The 7932 update is being delivered to address the previously disclosed issue with bogus digital certificates from Comodo.
"Microsoft is aware of nine fraudulent digital certificates issued by Comodo, a certification authority present in the Trusted Root Certification Authorities Store, on all supported releases of Microsoft Windows, Windows Mobile 6.x, Windows Phone 7, Microsoft Kin, and Zune devices. Comodo advised Microsoft on March 16, 2011 that nine certificates had been signed on behalf of a third party without sufficiently validating its identity. These certificates may be used to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all Web browser users including users of Internet Explorer."
Users will receive a notification of the update and it will be installed automatically. Users who have not already installed the February or NoDo copy-and-paste updates will get these updates when they get the 7932 update.
"Microsoft is aware of nine fraudulent digital certificates issued by Comodo, a certification authority present in the Trusted Root Certification Authorities Store, on all supported releases of Microsoft Windows, Windows Mobile 6.x, Windows Phone 7, Microsoft Kin, and Zune devices. Comodo advised Microsoft on March 16, 2011 that nine certificates had been signed on behalf of a third party without sufficiently validating its identity. These certificates may be used to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all Web browser users including users of Internet Explorer."
Users will receive a notification of the update and it will be installed automatically. Users who have not already installed the February or NoDo copy-and-paste updates will get these updates when they get the 7932 update.