F-Secure is reporting on a new rogue cert, for google.com, possibly tied to Iran at Diginotar Hacked by Black.Spook and Iranian Hackers. Kaspersky is trying to figure out the bigger picture implications of this at The bigger issue with the rogue Google SSL cert.