Reply to post: Re: Yeah, nice marketing

You've heard of HTTPS. Now get a load of HTTPA: Web services in verified remote trusted environments?

ThatOne Silver badge

Re: Yeah, nice marketing

> Faking as in signing with Microsoft's keys

Well, it's right here at El Reg that I read recently again about some strand of malware which is signed with Microsoft keys so it can run under the radar. Sorry, don't recall the details, and don't know how exactly they did it since the article didn't mention it.

Anyway, my (not perfect I admit) memory seems to tell me it's not the first time. I think other big "gatekeeper" signatures have been successfully faked (somehow) in the past, and this doesn't really surprise me, there is always a long way from a perfect (looking) theory to the usually quite imperfect implementation.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon