Global News

Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign

October 17, 2025

Written by:

Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign

Microsoft on Thursday disclosed that it revoked more than 200 certificates used by a threat actor it tracks as Vanilla Tempest to fraudulently sign malicious binaries in ransomware attacks.
The certificates were “used in fake Teams setup files to deliver the Oyster backdoor and ultimately deploy Rhysida ransomware,” the Microsoft Threat Intelligence team said in a post shared on X.
The tech

Source: https://thehackernews.com/2025/10/microsoft-revokes-200-fraudulent.html

#microsoftrevokes #fraudulentcertificates #microsoftthreat #ransomwaremicrosoft #attackscertificates

Global News

Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign

Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign

Leave a comment Cancel reply

Yekaterinburg Court Jails 5 Leftist Activists Over Alleged Coup Attempt

Central Bank of Ireland publishes roadmap to deliver a more effective and efficient regulatory framework

Rhasidat Adeleke renews Allianz sponsorship as calls grow for GAA to scrap deal

Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign

Microsoft Revokes 200 Fraudulent Certificates Used in Rhysida Ransomware Campaign

Share this:

Leave a comment Cancel reply

Yekaterinburg Court Jails 5 Leftist Activists Over Alleged Coup Attempt

Central Bank of Ireland publishes roadmap to deliver a more effective and efficient regulatory framework

Rhasidat Adeleke renews Allianz sponsorship as calls grow for GAA to scrap deal