Cybercrime service disrupted for abusing Microsoft platform to sign malware

bleepingcomputer.com·May 19, 2026

Microsoft has disrupted a malware-signing-as-a-service operation that exploited its Artifact Signing service to create fake code-signing certificates for use by ransomware gangs and cybercriminals.

The disruption of a malware-signing-as-a-service operation by Microsoft underscores the critical need for vigilance around code-signing services, which can be exploited to lend legitimacy to malicious software. As a professional in cybersecurity, ensure your threat intelligence strategies include monitoring for abuse of legitimate services like code-signing, as this can prevent ransomware and other cyber threats from bypassing security measures under the guise of trusted certificates.

Want more content like this?

twixb tracks your favorite blogs and social media, filters by keywords, and delivers personalized key learnings — straight to your inbox.

Create Your Own →Explore Newsfeeds

More from Cybersecurity News

Recent stories curated alongside this one.

Browse all Cybersecurity News →

Cybercrime service disrupted for abusing Microsoft platform to sign malware

Want more content like this?

More from Cybersecurity News

Microsoft shares mitigation for YellowKey Windows zero-day

Risky Business #838 -- GitHub investigates possible breach

Risky Bulletin: Microsoft takes down crime SaaS used by ransomware gangs

Verizon DBIR 2026: Vulnerability Exploitation Overtakes Credential Theft as Top Breach Vector

Max-severity flaw in ChromaDB for AI apps allows server hijacking