{ads}

Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign

Written By Friday, 17 October 2025 Add Comment



October 17, 2025 at 11:33AM

Microsoft on Thursday disclosed that it revoked more than 200 certificates used by a threat actor it tracks as Vanilla Tempest to fraudulently sign malicious binaries in ransomware attacks. The certificates were "used in fake Teams setup files to deliver the Oyster backdoor and ultimately deploy Rhysida ransomware," the Microsoft Threat Intelligence team said in a post shared on X. The tech

from The Hacker News https://ift.tt/7ng8q6N

0 Response to "Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign"

Post a Comment

Subscribe to: Post Comments (Atom)

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads