Microsoft Trusted Signing service abused to code-sign malware

Rasheed187 · Mar 30, 2025

This is crazy stuff, and another reminder that you can't blindly trust signed software.

Cybercriminals are abusing Microsoft's Trusted Signing platform to code-sign malware executables with short-lived three-day certificates.

Threat actors have long sought after code-signing certificates as they can be used to sign malware to appear like they are from a legitimate company.

Signed malware also has the advantage of potentially bypassing security filters that would normally block unsigned executables, or at least treat them with less suspicion.
Click to expand...

https://www.bleepingcomputer.com/ne...-signing-service-abused-to-code-sign-malware/

Log in or Sign up

Microsoft Trusted Signing service abused to code-sign malware

Rasheed187 Registered Member

Log in or Sign up

Microsoft Trusted Signing service abused to code-sign malware

Rasheed187 Registered Member

Useful Searches