ralf ha

🚨 Warning: Microsoft Defender is wrongly flagging some DigiCert certificates as Trojan:Win32/Cerdigent.A!dha, triggering widespread false positives on Windows systems. Admins report certificates being removed from the Windows trust store after recent Defender signature updates. What’s happening: 🔴 Two DigiCert root certificates flagged as malware 🔴 Some systems remove certs from the AuthRoot trust store 🔴 Detection added in April 30th Defender signature updates Microsoft has released fixes in Security Intelligence updates version 1.449.430.0. The issue comes shortly after a DigiCert breach where attackers gained access to support systems and code-signing certificates. If you're seeing Trojan:Win32/Cerdigent.A!dha alerts, update Defender signatures immediately.

🛡️ Microsoft Defender Mistakenly Flags DigiCert Root Certificates as Malware Source: cybersecuritynews.com/defender-flags… Microsoft Defender triggered widespread false positive alerts after a faulty security update caused it to flag two legitimate DigiCert root certificates as malicious, potentially disrupting SSL/TLS validation and code-signing operations across enterprise environments worldwide. On affected systems, Microsoft Defender automatically quarantined the flagged certificate entries as part of its standard remediation workflow, effectively removing them from the Windows trust store. This created a serious downstream risk: without these root certificates in place, systems could fail to validate SSL/TLS connections for websites and break code-signing verification. #cybersecuritynews #Digicert #Microsoft

Miami GP if the current situation continues

By Sayan Sen - Microsoft Defender is flagging “Cerdigent” trojan malware alerts on Windows 11 and Windows Server PCs across multiple regions worldwide. #Defender #Windows #Trojan neowin.net/news/microsoft…

@satyanadella @Microsoft

Agent 365 is now generally available! We’re extending the systems customers already use for identity, security, governance, and management to every AI agent and their interactions across the enterprise. microsoft.com/en-us/security…

Microsoft Defender has published analysis, detection insights, and mitigation recommendations for CVE-2026-31431 (also known as “Copy Fail”), a high-severity local privilege escalation vulnerability affecting multiple major Linux distributions: msft.it/6015vJcbT

Starships slamming into the atmosphere and pulling up overhead at the most clutch moment imaginable will never not be cool. The Adama Maneuver is eternal. 👇🔥🖖💫 #startrek #starfleetacademy #spoilers

@cyb3rops reddit.com/r/DefenderATP/…

Anyone else seeing Microsoft #Defender flagging #DigiCert root certificate registry keys as malware? We’ve seen reports that Defender signature update from April 30 added a detection called: Trojan:Win32/Cerdigent.A!dha In some environments, Defender apparently detected DigiCert Root CA certificate registry entries and removed them from the trust store. The affected cert hashes mentioned so far: 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 DDFB16CD4931C973A2037D3FC83A4D7D775D05E4 Example path: HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 There’s also a Reddit comment suggesting Microsoft has started restoring the certs and that admins can check this via Advanced Hunting in Defender: DeviceRegistryEvents | where RegistryKey contains "0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43" or RegistryKey contains "DDFB16CD4931C973A2037D3FC83A4D7D775D05E4" | where ActionType == "RegistryKeyCreated" | where Timestamp > datetime(2026-05-03T04:00:00) | project Timestamp, DeviceName, ActionType, InitiatingProcessFileName | order by Timestamp desc On an affected device, this can also be checked with: certutil -store AuthRoot | findstr -i "digicert" Could become an annoying day for admins if this spreads reddit.com/r/cybersecurit…

MASSIVE high-severity malware called 'Cerdigent' was detected. "Trojan:Win32/Cerdigent.A!dha" No one know what it is but everyone talking about it on reddit, microsoft forum etc take a look reddit.com/r/DefenderATP/… reddit.com/r/DefenderATP/… learn.microsoft.com/en-us/answers/…

@H_Koyatsu Wie geht der weg

今日、Trojan:Win32/Cerdigent.a!dhaというウイルス検出しました。ご用心を。恐いね。

@disintegr8te @UK_Daniel_Card Yes

Without Confirmation Defender signature 1.449.424.0 looks to detect two DigiCert public root CAs as Trojan:Win32/Cerdigent.A!dha — thumbprints DDFB16CD4931C973A2037D3FC83A4D7D775D05E4 (DigiCert Trusted Root G4) and 0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 (DigiCert Assured ID Root CA).

Anyone seeing this: 'Cerdigent' high-severity malware was detected

Es besteht Hoffnung, dass die Trockenheit in weiten Landesteilen bis Mitte Mai gelindert wird. Hier mal zwei Abendmodelle. Laufend neue Berechnungen und weitere Modelle: kachelmannwetter.com/de/modellkarte… /FR

Tankrabatt kommt nicht ganz bei Autofahrern an – „Das treibt die Preise enorm in die Höhe“ to.welt.de/c40Pscd

See you there ! #festival #music #electro

@23Suse @freiheitshandy 👍 Bing

@freiheitshandy welche Internet Suchmaschine ist dort installiert?

„Seit 6 Monaten kein Google mehr auf meinem Handy. Ich vermisse nichts — aber ich genieße alles." Fertig eingerichtet. Sofort loslegen. Ab 475€.

9 years ago, Microsoft gave UWP one last push as Windows 10 Mobile was coming to an end ... Hard to believe it has been nine years since I wrote about Microsoft trying to give UWP a new direction. I remember how much hope there was around a cleaner, modern app model for Windows. It never became what many of us wanted, but it captured a moment when the platform felt full of possibility. Funny how these old stories still hit a nerve and remind me why I love covering this stuff. From our archives🔗👇 windowscentral.com/microsoft/on-t…