Fresh evidence has emerged that stolen web security certificates may have been used to spy on people in Iran.
Analysis by Trend Micro suggests a spike in the number of compromised DigiNotar certificates being issued to the Islamic Republic.
It is believed the digital IDs were being used to trick computers into thinking they were directly accessing sites such as Google.
In reality, someone else may have been monitoring the communications.
Read more on BBC.