DigiCert revokes SSL/TLS certificates due to domain validation failure

DigiCert, a digital security company issuing SSL/TLS certificates and acting as a Certificate Authority (CA), has issued a statement to inform about the mass revocation of certificates lacking proper Domain Control Verification (DCV).

The company detected a bug generated during a system update in August 2019, when an underscore character, as a prefix, was not included with the random value used in some CNAME-based validation cases.

This bug has affected approximately 0.4% of the applicable domain validations that DigiCert has in force, according to the company itself, which has set 3 August as the deadline for those affected to replace their certificates.