Bleeping Computer

Latest Code-signing news

OpenAI is rotating potentially exposed macOS code-signing certificates after a GitHub Actions workflow executed a malicious Axios package during a recent supply chain attack. The latest variant of the ...
CNET

Verifying file checksums and application code-signing

Often, files that are distributed over the Internet are provided with a checksum number for security and file validity. While they are not needed, some people may wish to verify their downloads with ...
Infosecurity-magazine.com

Code Signing in the Age of Cloud and IoT

Code signing protects companies. In addition, it protects their partners, their users, and their consumers from evolving digital threats. The risks associated with software tampering are many, varied ...
Dark Reading

8 Strategies for Enhancing Code Signing Security

The recent news that hackers had breached remote access solution company AnyDesk shined a harsh light on the need for companies to take a long, hard look at code-signing practices to help ensure a ...
Infosecurity-magazine.com

Code Signing: How to Respond to the Hidden Threat

How do you know the code you’re using can be trusted? It’s a very important question – organizations and developers need to know code is genuine and hasn’t been tampered with, or they could risk ...
Ars Technica

Code signing certs, why are they still such a pain?

I have an open source project that requires code signing to be of much use. With Startcom finally being removed from Windows's trusted CAs, I am having to buy another code signing cert. Why is the ...
Bleeping Computer

Latest Code Signing Certificate news

Logitech's Options+ and G Hub apps on macOS stopped working after their code-signing certificate expired, leaving users unable to launch them on Apple systems. ConnectWise is warning customers that it ...