TechRepublic

MalSmoke attack: Zloader malware exploits Microsoft’s signature verification to steal sensitive data

Already impacting more than 2,000 victims, the malware is able to modify a DLL file digitally signed by Microsoft, says Check Point Research. A new malware campaign is taking advantage of a ...
Bleeping Computer

10-year-old Windows bug with 'opt-in' fix exploited in 3CX attack

"When enabled, the new behavior for Windows Authenticode signature verification will no longer allow extraneous information in the WIN_CERTIFICATE structure, and Windows will no longer recognize ...