The Iranian hacker who has claimed he stole digital certificates from Comodo has said he has turned over other certificate authorities.
“Sun Ich” said that there are more Certificate Authorities involved in the hack but would not say who. He said that it was up to the affected authorities to come forward. Since there are hundreds of certificate authorities around the world, it could be a tall order to guess which one he hit.
Sun Ich broke into one of Comodo's registration authorities InstantSSL.it and obtained nine fraudulent digital certificates for the likes of Gmail, Microsoft Live, Mozilla and Skype. He posted the private key to the Mozilla certificate as proof of the attacks.