GIGAZINE

Microsoft has revoked over 1,000 certificates that allowed malware to be mistaken for 'legitimate software.'

On May 19, 2026, Microsoft announced that it had revoked over 1,000 code signing certificates issued by the attack group 'Fox Tempest,' which operated a 'malware signing service' that made malware ...
Tech Times

Microsoft Dismantles Fox Tempest: Ransomware Groups Paid Up to $9,500 to Fake Windows Software Signatures

Microsoft’s Digital Crimes Unit unsealed a civil lawsuit on May 19 in U.S. District Court for the Southern District of New York targeting Fox Tempest, a criminal operation that sold fraudulently signe ...
Hosted on MSN

OpenAI asks all macOS users to update immediately after the TanStack attack forced the company to rotate its code-signing certificates

OpenAI is telling every Mac user running its ChatGPT or Codex desktop app to update right now. The urgency traces back to a supply-chain attack on a popular open-source JavaScript toolkit called ...

After malware attack: Criminals used DigiCert's codesigning certificates

First, criminals infected customer service employees with malware, then they stole more than twenty certificates. The CA has reacted - has Microsoft too?