lammert - 1:19 am on Sep 3, 2011 (gmt 0)
The issue is much broader than just the Google certificates. Also many government certificates in the Netherlands are signed by Diginotar. A few hours ago the ministry of Internal Affairs in the Netherlands announced that the Dutch government will stop using Diginotar as a certificate issueing body. The announcement was made by minister Piet Hein Donner himself, which is an indication that the Dutch government takes this hack very seriously.
The source of the hack and the fake certificates seems to be Iran. Besides a fake certificate for google.com, also certificates have been issued for the Yahoo and Mozilla site, and a number of blog platforms including WordPress.