Redmondmag.com

Microsoft Disrupts Fox Tempest Malware-Signing Service Used in Ransomware Attacks

Microsoft has disrupted a cybercrime service that allegedly helped ransomware operators and other attackers make malware appear as verified software, the company said last week.

After malware attack: Criminals used DigiCert's codesigning certificates

First, criminals infected customer service employees with malware, then they stole more than twenty certificates. The CA has reacted - has Microsoft too?
GIGAZINE

Microsoft has revoked over 1,000 certificates that allowed malware to be mistaken for 'legitimate software.'

On May 19, 2026, Microsoft announced that it had revoked over 1,000 code signing certificates issued by the attack group 'Fox Tempest,' which operated a 'malware signing service' that made malware ...

Fake Claude Code Installers Deliver Credential-Stealing Malware

Fake Claude Code install sites are pushing malware that steals API keys, developer credentials, crypto wallets, and other ...
TechRepublic

Microsoft Disrupts Malware-Signing Service Used by Ransomware Gangs

Microsoft disrupted Fox Tempest, a malware-signing service accused of abusing Azure certificates to disguise ransomware and malware as trusted software. Microsoft says it disrupted a malware-signing ...
Bleeping Computer

OpenAI rotates macOS certs after Axios attack hit code-signing workflow

OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious Axios package during a recent supply chain attack. The company said that on ...
Hosted on MSN

Key trusted Microsoft platform exploited to enable malware, experts warn

Trusted Signing, a Microsoft certificate-signing service, is being abused by criminals, researchers are saying The criminals are signing malware with short-lived, three-day certificates Microsoft is ...