Skip to main content

Tag: code signing

5 articles

Person typing on laptop keyboard with blurred screen and natural light from a large window in the background.

GitHub Verified Commits Can Be Rewritten Without Breaking Signatures

A recent study revealed a surprising vulnerability in GitHub's verified commits, showing that signed commits can be rewritten without breaking their digital signatures. This means that tampered code can still be labeled as Verified, posing a significant risk to code security.

Analyst 207
Devices and equipment in a brightly-lit tech facility with a laptop screen displaying blurred code.

Malvertisers Exploit Code Signing in TamperedChef Malware Campaigns

Meet the sneaky malware campaign that's been flying under the radar, leveraging polished marketing tactics and code signing to spread its malicious reach - with over 4,000 samples and 100 unique variants uncovered across three distinct clusters of activity.

Analyst 207
Law enforcement operation room with a large, dismantled computer setup symbolizing disrupted malware signing service.

Microsoft Disrupts Malware Signing Service Used by Ransomware Groups

Microsoft cracked down on a sophisticated malware signing service run by a group called Fox Tempest, which helped ransomware gangs disguise their malicious programs as legitimate software. This service was like a master forgery operation, creating counterfeit digital signatures that even experts struggled to spot.

Analyst 207
Brightly-lit courthouse conveys sense of institutional action and cyber enforcement.

Microsoft Disrupts Fox Tempest's Ransomware-Enabling Code-Signing Service

Microsoft's Digital Crimes Unit has successfully disrupted a notorious code-signing service used by cybercriminals, including the group behind Fox Tempest, to create fake IDs and gain easy access to systems. This operation has effectively shut down a key tool used by hackers to spread ransomware and malware.

Analyst 207
Broken chain link on dark background with laptop glow and scattered papers.

OpenAI Revokes macOS Certs Amid Supply Chain Breach Fallout

A recent supply chain breach has raised concerns about software trustworthiness, prompting OpenAI to revoke its macOS code-signing certificates after a malicious package was executed in its build pipeline. This swift action highlights the vulnerability of even the most secure systems to supply chain attacks.

Analyst 207