Mastodawn

Microsoft Disrupts Malware Signing Service Used by Ransomware Groups

Microsoft cracked down on a sophisticated malware signing service run by a group called Fox Tempest, which helped ransomware gangs disguise their malicious programs as legitimate software. This service was like a master forgery operation, creating counterfeit digital signatures that even experts struggled to spot.

https://osintsights.com/microsoft-disrupts-malware-signing-service-used-by-ransomware-groups?utm_source=mastodon&utm_medium=social

#FoxTempest #MalwareOperations #Ransomware #CodeSigning #ArtifactSigning

Microsoft Disrupts Malware Signing Service Used by Ransomware Groups

Learn how Microsoft disrupted Fox Tempest's malware signing service used by ransomware groups and what it means for cybersecurity; read the full story now.

OSINTSights

Anthony Accioly Jul 20, 2025

1/2
Today I was playing with Minisign and Cosign to evaluate whether it’s worth signing some of my OSS software with something other than PGP.

Here’s my verdict: Minisign is promising… Much easier to use than PGP. That simplicity, of course, comes at the cost of giving up a few features.

#OSS #SoftwareSigning #ArtifactSigning #PGP #Minisign #Cosign #Sigstore