SSL is a protocol that encrypts and securely transmits data between servers and browsers. The electronic file that this protocol enables is called an SSL certificate, and by installing the SSL certificate on the server, secure communication using the SSL protocol is possible also the company can be identified through the name of the company inside the certificate.
SSL certificates can be issued up to one year since September 2020, and are not automatically renewed, so one has to reissue and install the certificate in time for the renewal date every year.
If the missed renewal period and it expired, information entered in the browser may be exposed to potential hackers. Most of all, the vulnerability of the website’s security settings and the situation in which the service is not operating properly are exposed, resulting in fatal damage to the user trust of the website and service provider.
If you use the filter ssl_expired in Asset Search on Criminal IP (https://www.criminalip.io), you can check whether the SSL certificate on the internet page has expired or not.
Search Keyword: “ssl_expired: true”
Search Expired SSL Certificates Using Additional AS Name and HTML filter
If you add a filter called ‘as_name’ to the Search results filter above, you can narrow down the web pages that have expired SSL certificates by a specific company.
Search Keyword: “as_name: Spotify ssl_expired: true”
We’ve also looked at web pages with expired SSL certificates, including sites that provide VPN services for IKEA, another famous multinational company.
Search Keyword: “as_name: IKEA IT AB ssl_expired: true”
Moreover, if a web browser that collects user’s information through a login function is in a status where the certificate has expired, there is a possibility that the user’s personal information can be leaked by a hacking attack. This can cause the worst damage to both service operating companies and users, so special attention is necessary from the web page operator.
You can also additionally using the ‘html_meta_title‘ filter, you can find login pages with expired SSL certificates.
Source : Criminal IP (https://www.criminalip.io)