"DigiCert: Misissued code signing certificates": https://t.co/BTpKShTGWE "A malware incident targ...

Summary

DigiCert revealed that malware targeting a customer support team member led to the misissue of code signing certificates. The incident represents a critical supply chain risk, as compromised code signing certificates can be used to sign malicious software, lending it false legitimacy. The connection to APT-Q-27 remains unclear from available details.

Entities