Cybercriminals Exploit Microsoft Trusted Signing Platform to Sign Malicious Executables

Cybercriminals are exploiting Microsoft's Trusted Signing platform to sign malicious executables with short-term certificates lasting three days. This method allows attackers to bypass security mechanisms by using legitimate certificates to mask their malicious activities. The short-term certificates make detection and revocation more difficult, thereby increasing the risk for users and businesses.