Code Signing news

Microsoft has detailed a financially motivated group called Fox Tempest that operates a service selling fraudulent code-signing certificates to other criminals. This service helps malware, including ransomware, appear legitimate to bypass security software and infect systems more easily.

Microsoft has taken down a major malware code-signing service that enabled ransomware groups to make their malicious software appear legitimate. The operation involved seizing a website, revoking over 1,000 abused certificates, and shutting down hundreds of virtual machines hosted on Azure.