Originally posted by HunkaHunka
The article comments say a lot in context of the fact the system driver in use is signed by a British based company with Russian ties...
Digital certificates and keys can be stolen, when the theft is discovered such certificates are usually revoked and become invalid. It might have been
anyone inside or outside who got hold of the keys and decided to sell it or maybe even intentionally stole those in order to sign already made
malware. It's not that difficult to steal one but once found the malware becomes less effective and has to be signed again or even completely
rewritten if AV companies have found the code. So the company might not have anything to do with it.
Security has become a bigger issue over the years but still there are many systems administrators out there who don't think security is very important
or just can't do much about it because the company doesn't care and doesn't want to invest for a possible disaster which might never happen. I've seen
a lot of people with company phones and laptops who don't have AV or it's there but not running, or outdated virus definitions, no automatic updating
of the os, no firewall, bluetooth always on, users having admin rights, emailing passwords unencrypted, downloading all kinds of toolbars or just
plain surfin for porn and getting their computers infected with all kinds of stuff.
edit on 19/8/2012 by Dragonfly79 because: (no reason