Security · 1h ago
Microsoft Takedown Exposes $9K Malware-Signing Service Fox Tempest
Microsoft dismantled Fox Tempest, a malware-signing-as-a-service that abused its Artifact Signing system to create over 1,000 fraudulent certificates. The operation charged $5,000-$9,000 per signing and supported ransomware gangs like Qilin, Akira, and INC. Even 12 Microsoft-owned machines were compromised, highlighting the scale of the trust abuse.
Meridian48 take
The takedown is a win, but the real story is how easily Microsoft's own signing infrastructure was weaponized — and how many signed binaries remain in the wild.
Read the full reporting
Microsoft Dismantles Fox Tempest: The $9K Malware-Signing Service Behind Ransomware's Trust Exploit →
DEV Community
malware-signingransomware