Opera Software breach dredges up some serious concerns from security professionals about the amount of trust that organizations put into legitimately signed programs. Attackers are increasingly using the security industry’s certificate trust model against the organizations that depend on it. The Opera attack is hardly an exception in today’s malicious hacking standard operating procedures, says Jeff Hudson, CEO of Venafi. “We can only hope that this incident will act as a wake-up call, both to Opera and to others,” he says. Network-based controls may well be the best way to avoid an attack from compromised third-party resources.”]
Source: https://www.darkreading.com/attacks-breaches/what-s-it-take-to-trust-a-digitally-signed-program-