Authentic code-signing certificates have been leveraged by threat actors to facilitate the HijackLoader malware campaign earlier this month to better conceal the deployment of the Lumma information-stealing malware, an analysis from HarfangLab showed. “This research underscores that malware can be signed, highlighting that code signature alone cannot serve as a baseline indicator of trustworthiness,”

Source: SC Magazine