Viruses and Digital Signatures

Very interesting stuff: http://www.symantec.com/connect/blogs/viruses-and-digital-signatures

Although the files are signed, they are signed using an unauthenticated CA (Certificate Authority) which is masquerading as Verisign. A CA is a trusted third party that issues and signs the certificate and vouches for the authenticity of the file. Each CA should be registered and therefore recognized globally as a trusted signer. The signature on the certificate is verified by the signer’s public key.

Related Posts

Avira has new Risk Levels

I published a new article in the Avira Techblog: Combined Avira Risk Level We now have a new risk indicator: Global This indicator combines the other 3 in the easiest way possible. One might argue that Malware is more important than phishing and spam. Maybe, but they are all treated equally in our system. This […]

Facebook enables https per default to all users

Finally, after two years from the first release of the feature and hoping that the users will switch to https, Facebook enforces now https to all users by default. This feature means that your browser is told to communicate with Facebook using a secure connection, as indicated by the “https” rather than “http” in https://www.facebook.com.   This uses Transport […]

Emails containing fake invoices from Zalando and Deutsche Bahn distribute malware

We wrote before about the smart methods of fooling users to do things (execute files) which they would not normally do. Two weeks ago we’ve seen a mass mailing in the German language containing malicious payload pretending to be invoices from Apple and Plus.de. Cybercriminals are sending again personalized emails in the German language pretending […]