Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Microsoft Certificate Was Used to Sign "Flame" Malware

wiredmikey (1824622) writes | more than 2 years ago

Microsoft 1

wiredmikey (1824622) writes "Microsoft disclosed on Sunday that "unauthorized digital certificates derived from a Microsoft Certificate Authority" were used to sign components of the recently discovered "Flame" malware.

“We have discovered through our analysis that some components of the malware have been signed by certificates that allow software to appear as if it was produced by Microsoft,” Microsoft Security Response Center’s Jonathan Ness wrote in a blog post.

Microsoft is also warning that the same techniques could be leveraged by less sophisticated attackers to conduct more widespread attacks.

In response to the discovery, Microsoft released a security advisory detailing steps that organizations should take in order block software signed by the unauthorized certificates, and also released an update to automatically protect customers. Also as part of its response effort, Microsoft said its Terminal Server Licensing Service no longer issues certificates that allow code to be signed."

Link to Original Source

Sorry! There are no comments related to the filter you selected.

microsoft, why don't you... (1)

crutchy (1949900) | more than 2 years ago | (#40206635)

...just plagiarize linux source code and be done with it?

none of those pesky gpl toe-jammin' gpl fleabags need find out (i doubt they would be seen dead anywhere near microsoft employees let alone be friends), and they're too busy chowing down on toe crust to bother reverse engineering to prove violation

then you can rid the world of the joke that is the current windows operating system philosophy, and ballmer will have loads of hot geek chicks slobbering all over his knob for years to come (no pun intended)

if you already plagiarize linux source code, what the fuck is wrong with you people!?
Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?