D-LINKの開発者証明書が盗まれたらしく、マルウエアで使われれていた模様。速攻Expireしたみたい（revokeか）

Criminals recently stole code-signing certificates from router and camera maker D-Link and another Taiwanese company and used them to pass off malware that steals passwords and backdoors PCs, a researcher said Monday.
The certificates were used to cryptographically verify that legitimate software was issued by D-Link and Changing Information Technology. Microsoft Windows, Apple’s macOS, and most other operating systems rely on the cryptographic signatures produced by such certificates to help users ensure that executable files attached to emails or downloaded on websites were developed by trusted companies rather than malicious actors masquerading as those trusted companies.

Stolen certificates from D-Link used to sign password-stealing malware | Ars Technica

関連URL

• Stolen digital certificates misused in Plead malware campaign discovered
• Autumn Good on Twitter: "日本への攻撃でも使われているPleadが正規のデジタル署名（D-Linkのと台湾のセキュリティ会社のやつの2パターン）を使っていたようです🤔 Stolen digital certificates misused in Plead malware campaign discovered https://t.co/ngSWAY0T66… https://t.co/caRiQYPuTR"