Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign

Source: The Hacker News | Added:

Microsoft has revoked over 200 fraudulent certificates used by the threat actor Vanilla Tempest to sign malicious binaries in ransomware attacks. These certificates were utilized in fake Teams setup files to deliver the Oyster backdoor and deploy Rhysida ransomware.

---

Impact: Microsoft Teams

In the Wild: Yes

Age: Newly disclosed

Remediation: Revocation of fraudulent certificates

Read Full Original Article →