Cybercriminals are abusing Microsoft’s Trusted Signing platform to code-sign malware executables with short-lived three-day certificates. Threat actors have long sought after code-signing certificates as they can be used to sign malware to appear like they are from a legitimate company. Signed malware also has the advantage of potentially bypassing security filters that would normally block unsigned executables, or at least treat them with less suspicion.These malware samples are signed by “Microsoft ID Verified CS EOC CA 01” and the certificate is only valid for three days. While the certificate expires three days after being issued, it is important to note that executables signed with it will still be considered valid until the issuer revokes the certificate. Do you think that credibility on online signatures is collapsing ?
Previous Article
Europe’s elite nervous about freespeechNext Article
Warren Buffett vs. Tesla Stock