TechRadar

Nasty malware abuses Microsoft e-signature service to steal your passwords

A well-known malware is making new rounds online, abusing Microsoft’s digital signature verification to steal passwords and other sensitive information from its victims. According to cybersecurity ...
Bleeping Computer

10-year-old Windows bug with 'opt-in' fix exploited in 3CX attack

"When enabled, the new behavior for Windows Authenticode signature verification will no longer allow extraneous information in the WIN_CERTIFICATE structure, and Windows will no longer recognize ...