Elexon’s Insight Platform Faces Outage Due to Expired TLS Certificate
A power play on the wholesale market
Elexon is a key player in the UK’s wholesale electricity market, providing crucial operational data through its Insight Solution platform. A recent incident occurred when an expired TLS certificate caused disruptions in accessing the platform’s data. This issue affected users relying on the API for operational and market planning data, rendering many integrations inoperative. The certificate was renewed within hours.
Microsoft lets SwiftKey support site certificate expire, causing user disruptions
Web servers that serve redirects, need certificates too
Microsoft, a consumer of useful startups, has allowed the TLS certificate for its SwiftKey support website to expire. This oversight has resulted in a stern browser warning for users seeking support, indicating a certificate error. Although the site has been redirecting to Microsofts own support page for quite some time, the certificate is generated from their own CA and could have been caught with proper procedures.
Microsoft Experiences Security Warnings Due to Expired TLS Certificate on multple services
No one likes rotating certificates on read-only friday.
Microsoft has expiration issues with its TLS certificates, resulting in unwanted security warnings. The intermediate CAs "Microsoft Azure ECC TLS Issuing CA 01" and "Microsoft Azure ECC TLS Issuing CA 02" expired, leading to issues with multiple services. Administrators are facing headaches due to the expired certificates, which affected Azure Event Grid, some Xbox services, and internal Microsoft services. The expired certificates, valid until June 27, 2024, caused security errors for Microsoft 365 and Office Online users, impacting numerous users.
jsDelivr CDN Experiences Outage Due to Expired SSL Certificate in May 2024
Does this one even count?
jsDelivr, a free open source CDN for npm and GitHub, experienced an outage on May 2, 2024. The incident occurred when the domain cdn.jsdelivr.net served an expired SSL certificate, mostly impacting users in Africa, Asia, and parts of Europe and Latin America for over 5 hours. The root cause was a switch by Cloudflare from DigiCert to Google Trust Services, which changed the domain validation method. After failed validations, the service reverted to an already expired certificate (which made me doubt if this incident should be in the collection).
State House Website’s Security Certificate Expired for Two Weeks Before Renewal
Certificate outage blues.
The State House website in Nigeria, www.statehouse.gov.ng faced a security lapse. The security certificate expired two weeks before and had not been renewed, posing risks to users accessing the site.
Microsoft's WinGet Suffers Downtime After SSL/TLS Certificate Expiry of CDN
No certificate problems if you can't install a browser.
Microsoft, creator and hoster of the WinGet application and repository, faced issues due to an expired SSL/TLS certificate on the CDN. Starting from Saturday evening, users reported failures while installing or upgrading packages through WinGet. Although a workaround was crowd-sourced (adding an alias domain of the same repository via the WinGet CLI), that was renewed after 12 hours.
Cisco Alerts on Expired Certificate Bug Impacting Viptela SD-WAN Devices
Do NOT turn your appliance off.
Cisco is warning customers about an expired certificate bug in several of its Viptela SD-WAN devices, which can take down the boxes and consequently their attached SD-WAN environments. The issue affects the vEdge 100, 1000, and 2000 routers, which typically sit at the edge of the network and provide SD-WAN, security, and multi-cloud connectivity to enterprises. Cisco is developing a solution to replace the expired certificate and is working to support customers already impacted by the problem.
Twitter Lets Tor Onion Site Certificate Expire, Killing Off Privacy-Protecting Service
A bitter pill to swallow
Twitter has allowed the certificate for its Tor onion site to expire, effectively shutting down a privacy- and speech-protecting service that it introduced just last year. The certification expired on March 6th, just shy of two years since the site's launch. The Tor Project has reached out to Twitter to try to bring the onion version of the social media platform back online, but the future of the service looks bleak as Twitter has faced significant staffing cuts and struggles with the stability of its main site.