Bleeping Computer

Hackers turn ScreenConnect into malware using Authenticode stuffing

Threat actors are abusing the ConnectWise ScreenConnect installer to build signed remote access malware by modifying hidden settings within the client's Authenticode signature. ConnectWise ...
Bleeping Computer

10-year-old Windows bug with 'opt-in' fix exploited in 3CX attack

A 10-year-old Windows vulnerability is still being exploited in attacks to make it appear that executables are legitimately signed, with the fix from Microsoft still "opt-in" after all these years.
Houston Chronicle

How To Disable the Windows Digital Certificate Prompt

Internet Explorer, the Microsoft Windows default Web browser, uses what it calls Authenticode technology to verify the digital security certificates of visited websites, helping guard against viruses ...
Dark Reading

Windows Mark of the Web Zero-Days Remain Patchless, Under Exploit

Two separate vulnerabilities exist in different versions of Windows that allow attackers to sneak malicious attachments and files past Microsoft's Mark of the Web (MoTW) security feature. Attackers ...