Monday, May 12, 2025
HomeSecurity NewsLet's Encrypt Starts Offering Free Wildcard SSL Certificates that Work with Multiple...

Let’s Encrypt Starts Offering Free Wildcard SSL Certificates that Work with Multiple Sub-domains

Published on

SIEM as a Service

Follow Us on Google News

Let’s Encrypt started issuing free Wildcard SSL certificate from yesterday through their updated version of ACME protocol Automated Certificate Management Environment ACMEv2.

Wildcard SSL certificates are more expensive ones than the regular single domain SSL certificates, a wildcard certificate for the domain name *.gbhackers.com could cover gbhackers.com, www.gbhackers.com, test.gbhackers.com.

Also Read testssl.sh – Tool to check cryptographic flaws and TLS/SSL Ciphers on any Ports

- Advertisement - Google News

The free Wildcard SSL certificate will be issued starting from the ACMEv2 environment “if you are having ACME v2 Compatible Clients then to request a wildcard certificate simply send a wildcard DNS identifier in the new order request”.

Here is the list of ACME v2 Compatible Clients and the wildcard certificates are available via ACMEv2.

To get the free Wildcard SSL certificate the domain validation needs to be completed using the DNS-01 validation method, this means you should modify the TXT records to prove the ownership of the domain.

Let’s encrypt says that Authorizations held by a V1 account will not be usable in the V2 environment – you must revalidate your domains for use with ACME v2. Similar to ACMEv1.

According to Scotthelme’s recent Alexa Top 1 Million Analysis, the number of sites enforcing HTTPS increased at an impressive rate.With last Alexa Top, 1 Million websites Analysis HTTPS adoption increased by 32.30%.

Let’s encrypt had a very good progress as it breaks the technical and cost barriers, “We’re excited about the prospect of a 100% HTTPS Web and we’re working hard to get there” the statement reads.

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Lumma Stealer Upgraded with PowerShell Tools and Advanced Evasion Techniques

Sophos Managed Detection and Response (MDR) in September 2024, the notorious Lumma Stealer malware...

New Noodlophile Malware Spreads Through Fake AI Video Generation Platforms

Cybercriminals have unleashed a new malware campaign using fake AI video generation platforms as...

Kimsuky Hacker Group Deploys New Phishing Techniques and Malware Campaigns

The North Korean state-sponsored Advanced Persistent Threat (APT) group Kimsuky, also known as “Black...

APT37 Hackers Use Weaponized LNK Files and Dropbox for Command-and-Control Operations

The North Korean state-sponsored hacking group APT37, also known as ScarCruft, launched a spear...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

Phishing Campaign Uses Blob URLs to Bypass Email Security and Avoid Detection

Cybersecurity researchers at Cofense Intelligence have identified a sophisticated phishing tactic leveraging Blob URIs...

UK Government to Shift Away from Passwords in New Security Move

UK government has unveiled plans to implement passkey technology across its digital services later...

New Spam Campaign Leverages Remote Monitoring Tools to Exploit Organizations

A sophisticated spam campaign targeting Portuguese-speaking users in Brazil has been uncovered by Cisco...