Microsoft takes down 'Fox Tempest' cybercrime service which used legitimate platforms to hide dangerous malware
Microsoft has successfully taken down the Fox Tempest cybercrime service, which exploited legitimate platforms to distribute malware. The operation involved the creation of over a thousand fraudulent code-signing certificates, allowing malicious software to evade security measures. Legal action has been initiated against the perpetrators, including a co-conspirator named Vanilla Tempest.
- ▪Fox Tempest created more than 1,000 fake certificates and hundreds of Azure tenants.
- ▪The service allowed malware to be signed as legitimate software, bypassing antivirus protections.
- ▪Microsoft seized the signspace.com domain and blocked access to the infrastructure supporting the service.
Opening excerpt (first ~120 words) tap to expand
Pro Security Microsoft takes down 'Fox Tempest' cybercrime service which used legitimate platforms to hide dangerous malware News By Sead Fadilpašić published 20 May 2026 Fox Tempest created more than a thousand fake certificates When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. (Image credit: Shutterstock) Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter Microsoft disrupts Fox Tempest operation which abused Azure Artifact Signing to issue fraudulent code‑signing certificatesThe group created over 1,000 certificates and hundreds of Azure tenants, enabling malware campaigns to bypass…
Excerpt limited to ~120 words for fair-use compliance. The full article is at TechRadar.
Discussion
0 commentsMore from TechRadar
