ID :IRCNE2012091632
Date: 2012-09-29
According to CNet, Adobe said today it will revoke a code signing certificate after discovering malware that was digitally signed with the certificate.
"Adobe is currently investigating what appears to be the inappropriate use of an Adobe code signing certificate for Windows," Brad Arkin, senior director of security at Adobe, wrote in a blog post. "We plan to revoke the impacted certificate on October 4, 2012 for all software code signed after July 10, 2012."
"The evidence we have seen has been limited to a single isolated discovery of two malicious utilities signed using the certificate and indicates that the certificate was not used to sign widespread malware," Arkin added. There is no evidence at this time that "any other sensitive information -- including Adobe source code or customer, financial or employee data -- was compromised."
- 2