DigiCert: Misissued code signing certificates

DigiCert reported a security incident involving the misissuance of code signing certificates due to a malware attack on their support team. A threat actor gained access to initialization codes for several certificates, which were subsequently used to sign malware. DigiCert acted swiftly, revoking the affected certificates within 24 hours of discovery and implementing additional security measures to prevent future incidents.

1. 2026-04-02 Threat actor compromised support endpoint.
2. 2026-04-03 First endpoint detected and contained.
3. 2026-04-14 Second endpoint identified as compromised.
4. 2026-04-17 60 certificates revoked.