TamperedChef Malware: Don't Trust Signed Productivity Apps – Check Before You Install
TamperedChef Malware: Don’t Trust Signed Productivity Apps – Check Before You Install We’ve been taught to look for the little seal—the digital signature that says a program came from a verified publisher. That seal is supposed to mean the software hasn’t been tampered with. But a recent campaign called TamperedChef is showing that even signed apps can be dangerous. Security researchers report that cybercriminals are using valid code-signing certificates to turn ordinary-looking productivity tools into delivery vehicles for information stealers and remote access trojans (RATs). If you or your small business regularly downloads PDF converters, note-taking apps, or office suites from anywhere other than official stores, you need to understand how this attack works and what you can do about it. ...