Dark Reading

Criminals Obtain Code-Signing Certificates Using Stolen Corporate IDs

Malware authors have for some time been using code-signing certificates for their malicious payloads so they can sneak past enterprise anti-malware tools. But contrary to popular belief, not all of ...
Business Wire

Dark Web Research: Illicit Code Signing Certificates More Valuable Than Passports and Handguns

SALT LAKE CITY--(BUSINESS WIRE)--Venafi ®, the leading provider of machine identity protection, today announced the findings of a six-month investigation into the sale of digital code signing ...
ZDNet

Hackers are selling legitimate code-signing certificates to evade malware detection

Security researchers have found that hackers are using code-signing certificates more to make it easier to bypass security appliances and infect their victims. New research by Recorded Future's Insikt ...
Bleeping Computer

GitHub revokes code signing certificates stolen in repo hack

GitHub says unknown attackers have stolen encrypted code-signing certificates for its Desktop and Atom applications after gaining access to some of its development and release planning repositories.
ITWire

Everything you need to know about Code Signing Certificates vs TLS/SSL Certificates

Guest Opinion: For many organisations, learning the differences between code signing certificates and TLS/SSL certificates can be overwhelming. While overwhelming, however, it’s essential ...
Threat Post

NVIDIA’s Stolen Code-Signing Certs Used to Sign Malware

NVIDIA certificates are being used to sign malware, enabling malicious programs to pose as legitimate and slide past security safeguards on Windows machines. Two of NVIDIA’s code-signing certificates ...