Taiwan-based networking equipment manufacturer D-Link accidentally published its code signing keys inside its open source firmware packages. The company has responded to this issue by revoking the certificate in question and releasing a new version of the firmware that does not contain have any code signing key inside it. It is still unclear whether these private keys have been used by malicious third-party vendors, but there are possibilities that hackers could have used the keys to sign their malware to execute attacks. The keys were still valid at the time, but the other three private codes he found did not appear to be valid.”]