Stuxnet-style code signing of malware becomes darknet cottage industry

Even reports of crims offering signing-as-a-service.
John Leyden
Underground cybercrooks are selling digital certificates that allow code signing of malicious instructions, creating a lucrative and expanding cottage industry in the process, according to new research from threat intelligence firm InfoArmor.
In one case, a hacker tricked a legitimate certificate authority into issuing digital certificates for malware before marketing a cyber-espionage tool called GovRAT.
GovRAT is a malware creation tool that comes bundled with digital certificates for code signing initially sold through TheRealDeal Market, an underground marketplace on the so-called dark net thatÂ’s only accessible using TOR.
To read the entire article, please click here.