Home > News

Ericsson Expired Certificate Took Smartphones Offline in 11 Countries

By Laura Tucker
Ericsson Expired Certificate Took Smartphones Offline in 11 Countries Featured Image

Every business has to do their housekeeping to keep everything operating smoothly, and tech companies are no different. When major companies commit a preventable error that affects millions of people across the world, it’s just unforgivable.

Ericsson admitted in a blog post that they were responsible for millions of phones in eleven countries going offline after they allowed a certificate to expire.

Ericsson’s Admission

Multiple Ericsson customer networks reported network disturbances. This led to the company jumping into action to restore services to these networks as soon as possible.

news-ericsson-expired-certificate-building

The Ericsson blog noted the company “had identified an issue in certain nodes in the core network resulting in network disturbances for a limited number of customers in multiple countries using two specific software versions of the SGSN-MME.”

The President and CEO of Ericsson, Börje Ekholm, noted that the “faulty software” had caused the issues and that it was being “decommissioned.” He apologized to everyone who was affected and explained they tried to limit the impact of what their customers ultimately experienced.

The blog added that “an initial root cause analysis indicates that the main issue was an expired certificate in the software versions installed with these customers. A complete and comprehensive root cause analysis is still in progress. Our focus is now on solving the immediate issues.”

Ultimate Effects of the the ‘Expired Certificate”

The Verge reports that the the expired certificate that Ericsson faced “took millions of smartphones offline across the UK and Japan and created issues in almost a dozen countries.” Most of the focus was given to the outages experienced by the O2 network in the UK and Softbank network in Japan.

news-ericsson-expired-certificate-board

It’s also assumed from the description of the problem that this outage was preventable. As much as we talk about security, while we need to take care of it on our end, so do the companies we entrust. Ericsson should have some type of maintenance in play to ensure certificates don’t expire.

Not that Ericcson is alone in that shame. Throughout the past five years, Xbox Live, Windows Azure, the Mac App Store, and Oculus Rift have all had issues with expired certificates.

Furthermore

It just seems inexcusable with the heightened awareness we have for security to be having issues with expired certificates. Shouldn’t it be the job of someone in particular to renew those and make sure it’s done within an acceptable time?

What are your thoughts? Is it inexcusable for a major tech company to be having this problem? Or do you think these types of things are just going to happen? Tell us what you think about Ericsson’s expired certificate in the comments.

Image credit: Cotxe d’Ericsson and public domain

Subscribe to our newsletter!

Our latest tutorials delivered straight to your inbox

Laura Tucker Avatar
Laura Tucker
Laura has spent more than 20 years writing news, reviews, and op-eds, with the majority of those years as an editor as well. She has exclusively used Apple products for the past 35 years. In addition to writing and editing at MTE, she also runs the site’s sponsored review program.

Read next

Octopuses possess roughly 500 million neurons distributed across their body, with two-thirds located in their arms rather than their central brain, meaning each arm can taste, problem-solve, and react to stimuli independently of whatever the octopus is otherwise paying attention to.
Explore the historic Roman bridge in lush Salamanca, Spain captured beautifully in daylight.
The Roman aqueduct at Segovia, built around the first century AD without mortar, still carried water into the 1970s, its 167 granite arches held together by nothing but the precise weight distribution of stones cut to fit each other within fractions of a millimeter.
When the SS Great Eastern laid the first working transatlantic telegraph cable in 1866, a message that had taken ten days by steamship suddenly crossed the ocean in minutes, and the financial markets of London and New York were forced, within a single trading week, to invent the modern concept of synchronised global price.
From below of blue starry sky over radio telescope and trees with leaves
The Big Ear telescope was scanning at 1420.4056 megahertz on the night of 15 August 1977, the exact frequency at which hydrogen atoms vibrate across the universe, because Giuseppe Cocconi and Philip Morrison had argued years earlier that any species trying to be found would broadcast on that channel — and then, for 72 seconds, something did.
In 2016, archaeologists dated two rings of snapped stalagmites in France’s Bruniquel Cave to 176,500 years ago, evidence that Neanderthals had walked 336 metres into darkness with fire and built architecture deep underground long before modern humans reached Europe
Otto von Bismarck was 74 when Germany adopted the world’s first national old-age social insurance program in 1889, setting the pension age at 70 after years of fighting socialists with bans, laws, and a promise few workers would live long enough to use
When cosmonaut Valeri Polyakov stepped out of his Soyuz capsule in March 1995 after 437 consecutive days aboard Mir, doctors recorded him at several centimetres above his pre-flight height, and his spine had become so unaccustomed to gravity that the recovery team carried him to a chair rather than risk the compression of letting him walk.
When Bell Labs engineer Karl Jansky pointed a rotating antenna at the sky in 1932 looking for sources of transatlantic radio static, he kept picking up a faint hiss that peaked every 23 hours and 56 minutes, and he eventually realized he had become the first human to hear the center of the Milky Way.