DigiCert revokes 60 code signing certificates after hackers used a malicious support chat attachment to sign the Zhong Stealer malware.

The post Let’s Encrypt Slashes Certificate Lifespans and Sunsets mTLS on May 13 appeared first on Daily CyberSecurity. Related posts: The End of an Era: Popular CA Buypass to Halt Free TLS/SSL Certificates SSL Certificate Validity Reduced to 47 Days After Apple Proposal Security Tightens: Let’s Encrypt Will Cap Certificate Validity at 45 Days by 2028

The post Trojanized Tools: DAEMON Tools Supply Chain Attack Compromises Global Systems appeared first on Daily CyberSecurity. Related posts: Malicious Packagist Themes Target Vietnamese OphimCMS Sites with Trojanized JS Backdoored React Native Packages Target Developers with Crypto-Stealing Malware Supply Chain Sabotage: Bitwarden CLI Compromised in Global “Checkmarx” Campaign

Microsoft fixed a Defender false positive that flagged legitimate DigiCert certificates as malware, disrupting Windows trust stores for some IT teams. The post Microsoft Defender Bug Triggers False Malware Alerts for DigiCert Certificates appeared first on TechRepublic.