RESECURITY collaborated with Microsoft to disrupt Fox Tempest, a cybercriminal service that provided malware-signing capabilities using fake Microsoft certificates. This operation aimed to enhance the legitimacy of malware, making it easier for cybercriminals to bypass security measures. Microsoft filed legal actions, seizing the service's infrastructure and revoking over 1,000 fraudulent code-signing certificates.
The collaboration involved Europol and the FBI, emphasizing the need for public-private partnerships in combating cybercrime. Disrupting such services is vital to hinder ransomware operators and improve cybersecurity defenses.