unknown 443 traffic to sites with bad certs

Discussion in 'other security issues & news' started by lunarlander, Jun 16, 2011.

Thread Status:
Not open for further replies.
  1. lunarlander

    lunarlander Registered Member

    Joined:
    Apr 30, 2011
    Posts:
    121
    Hi,

    On my router, I am seeing traffic with the source ip of my system to various SSL sites (port 443). When I manually go inspect those sites, they always have bad certificates, like update.microsoft.com, or some other cert that is not valid. The thing is I never did surf to those sites. I deduce that they are spoofed traffic, has anyone seen anything like this?
     
Loading...
Thread Status:
Not open for further replies.