This is a few days old but none the less valuable to those of you using SpamAssassin. It appears that spammers are using digital certs to circumvent the application. The good news is that a fix is already available.
You can read more about it here:
http://zdnet.com.com/2100-1104_2-5089977.html
--TH13