Kevin Bocek, vice president of security strategy and threat intelligence at Venafi, speaks with reporter Danielle Walker on social engineering ruses targeting wildcard certificates.

While the public key certificates help ease system administrators’ workloads, the authentication measure could also allow for widespread exploitation if accessed by those with malicious intent. Here, Kevin draws from previous breaches where such phishing tactics were used, to advice organizations on how not to fall victim to attacks.