Feed aggregator

The exploitation is mitigated by preventing the FsTx Auto Recovery Utility from starting when the WinRE image launches.

The post Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass appeared first on SecurityWeek.

Article URL: https://www.nature.com/articles/d41586-026-01554-0

Comments URL: https://news.ycombinator.com/item?id=48209499

Points: 1

# Comments: 0

Article URL: https://leaddev.com/software-quality/ai-generated-abandonware-is-hollowing-out-open-source

Comments URL: https://news.ycombinator.com/item?id=48209469

Points: 1

# Comments: 0

Article URL: https://git.andros.dev/andros/meshtastic.el

Comments URL: https://news.ycombinator.com/item?id=48209446

Points: 2

# Comments: 0

Article URL: https://github.com/slokam-ai/localgcp

Comments URL: https://news.ycombinator.com/item?id=48209441

Points: 1

# Comments: 0

Microsoft says it dismantled a malware-signing-as-a-service (MSaaS) called Fox Tempest, which helped cybercriminals make malware appear legitimate.

The service let customers submit malicious files to be digitally signed with short-lived Microsoft-issued certificates, making the malware look legitimate and more likely to bypass security checks.

Fox Tempest’s service was built around a customer-facing signing workflow where cybercriminals could upload malicious binaries to a portal, have them signed with certificates valid for only 72 hours, and then receive files that appeared to come from a trusted software source.

Microsoft explicitly says this approach allowed malware to evade security controls and bypass defenses that would otherwise flag suspicious unsigned code. Many security tools treat signed binaries as more trustworthy than unsigned ones, especially in environments that rely on allow-lists and publisher reputation. Fox Tempest abused that assumption by using fraudulently obtained certificates to make malware blend in as legitimate software, increasing the likelihood of execution and successful delivery.

A trusted-looking certificate can help malware get past initial scrutiny, especially when paired with social engineering, paid ads, SEO poisoning, or fake download pages. In this campaign, the signing layer helped malicious installers masquerade as products like AnyDesk, Teams, PuTTY, and Webex, which is exactly the kind of abuse that can slip through control frameworks built around reputation and trust.

The fraudulent certificates were used to spread ransomware and infostealers. The effects of these malware campaigns were broad, with attacks affecting healthcare, education, government, and financial services across multiple countries.

How to stay safe

Microsoft’s disclosure shows how cybercrime has evolved beyond “malware authors” into a service economy where one group specializes in producing trust and others monetize it.

For defenders, the strongest lesson is not to treat code signing as a standalone security control. 

For consumers:

• Remember to only download software from the official vendor site, the Microsoft Store, or another source you already trust. Avoid download buttons on links sent via social media posts, direct messages or email.
• Be skeptical of “sponsored” search results and advertisements for popular apps.
• Use an up-to-date, real-time anti-malware solution that looks for malicious behavior rather than just signatures.

We don’t just report on threats—we remove them

Cybersecurity risks should never spread beyond a headline. Keep threats off your devices by downloading Malwarebytes today.

Article URL: https://www.the-substrate.net/p/how-much-should-we-worry-about-secretly

Comments URL: https://news.ycombinator.com/item?id=48209360

Points: 1

# Comments: 0

Article URL: https://isle31.com/

Comments URL: https://news.ycombinator.com/item?id=48209353

Points: 1

# Comments: 0

Article URL: https://reubenbrooks.dev/blog/structural-backpressure-beats-smarter-agents/

Comments URL: https://news.ycombinator.com/item?id=48209323

Points: 1

# Comments: 1

Article URL: https://chatlaw.substack.com/p/how-musk-might-defeat-the-statute

Comments URL: https://news.ycombinator.com/item?id=48209315

Points: 1

# Comments: 0

Article URL: https://www.quantamagazine.org/how-alexander-grothendieck-revolutionized-20th-century-mathematics-20260520/

Comments URL: https://news.ycombinator.com/item?id=48209312

Points: 1

# Comments: 0

Article URL: https://www.politico.com/news/2026/05/19/data-centers-loom-over-georgia-governor-race-00929073

Comments URL: https://news.ycombinator.com/item?id=48209306

Points: 1

# Comments: 0

Article URL: https://electrek.co/2026/05/19/tesla-cybertruck-owner-believed-elon-musk-lake-jail/

Comments URL: https://news.ycombinator.com/item?id=48209285

Points: 1

# Comments: 0

Article URL: https://github.com/erenworld/awesome-database/

Comments URL: https://news.ycombinator.com/item?id=48209268

Points: 1

# Comments: 0

Article URL: https://www.yugabyte.com/blog/benchmarking-ai-coding-agents-for-distributed-sql-lessons/

Comments URL: https://news.ycombinator.com/item?id=48209259

Points: 1

# Comments: 0

Article URL: https://jasmi.news/p/party-in-the-permanent-underclass

Comments URL: https://news.ycombinator.com/item?id=48209244

Points: 1

# Comments: 1

Article URL: https://deepmind.google/blog/co-scientist-a-multi-agent-ai-partner-to-accelerate-research/

Comments URL: https://news.ycombinator.com/item?id=48209242

Points: 1

# Comments: 0

Article URL: https://software.annas-archive.gl/AnnaArchivist/annas-archive/-/work_items?show=eyJpaWQiOiIzMDUiLCJmdWxsX3BhdGgiOiJBbm5hQXJjaGl2aXN0L2FubmFzLWFyY2hpdmUiLCJpZCI6NzIzMjJ9

Comments URL: https://news.ycombinator.com/item?id=48209219

Points: 1

# Comments: 0

Article URL: https://abcnews.com/US/woman-dies-after-falling-nyc-manhole/story?id=133109814

Comments URL: https://news.ycombinator.com/item?id=48209202

Points: 1

# Comments: 0

Article URL: https://www.stackone.com/blog/training-22mb-prompt-injection-classifier/

Comments URL: https://news.ycombinator.com/item?id=48209184

Points: 1

# Comments: 0