Microsoft’s Digital Crimes Unit (DCU) has dismantled the infrastructure of Fox Tempest, a financially motivated threat actor that operated a sophisticated malware-signing-as-a-service (MSaaS) platform, enabling ransomware groups and cybercriminals worldwide. Fox Tempest, tracked by Microsoft Threat Intelligence since September 2025, does not directly attack victims. Instead, the group operates upstream in the cybercrime supply chain providing […]
The post Fox Tempest Abused Microsoft Artifact Signing to Certify Malware appeared first on Cyber Security News.