Home » Links you heard on the show » Stuxnet-style code signing is more widespread than anyone thought

Stuxnet-style code signing is more widespread than anyone thought

Forgeries undermine the trust millions of people place in digital certificates.

Researchers have presented proof that digitally signed malware is much more common than previously believed. What’s more, it predated Stuxnet, with the first known instance occurring in 2003. The researchers said they found 189 malware samples bearing valid digital signatures that were created using compromised certificates issued by recognized certificate authorities and used to sign legitimate software. In total, 109 of those abused certificates remain valid.

Source: Stuxnet-style code signing is more widespread than anyone thought

Leave a Reply