Hackers Are Selling Legitimate Code-signing Certificates To Evade Malware Detection
Hackers Are Selling Legitimate Code-signing Certificates To Evade Malware Detection
Published on February 25, 2018 at 08:00PM
Zack Whittaker, writing for ZDNet Security researchers have found that hackers are using code-signing certificates more to make it easier to bypass security appliances and infect their victims. New research by Recorded Future's Insikt Group found that hackers and malicious actors are obtaining legitimate certificates from issuing authorities in order to sign malicious code. That's contrary to the view that in most cases certificates are stolen from companies and developers and repurposed by hackers to make malware look more legitimate. Code-signing certificates are designed to give your desktop or mobile app a level of assurance by making apps look authentic. Whenever you open a code-signed app, it tells you who the developer is and provides a high level of integrity to the app that it hasn't been tampered with in some way. Most modern operating systems, including Macs , only run code-signed apps by default.
// Hope you like this please comment your view and share to your friends thanks for visiting bye guys meet you in next post
Published on February 25, 2018 at 08:00PM
Zack Whittaker, writing for ZDNet Security researchers have found that hackers are using code-signing certificates more to make it easier to bypass security appliances and infect their victims. New research by Recorded Future's Insikt Group found that hackers and malicious actors are obtaining legitimate certificates from issuing authorities in order to sign malicious code. That's contrary to the view that in most cases certificates are stolen from companies and developers and repurposed by hackers to make malware look more legitimate. Code-signing certificates are designed to give your desktop or mobile app a level of assurance by making apps look authentic. Whenever you open a code-signed app, it tells you who the developer is and provides a high level of integrity to the app that it hasn't been tampered with in some way. Most modern operating systems, including Macs , only run code-signed apps by default.
Read more of this story at Slashdot.
// Hope you like this please comment your view and share to your friends thanks for visiting bye guys meet you in next post
Hackers Are Selling Legitimate Code-signing Certificates To Evade Malware Detection
![Hackers Are Selling Legitimate Code-signing Certificates To Evade Malware Detection]()
Reviewed by Kartik
on
February 25, 2018
Rating:
No comments: