/GettyImages-1323900927-24c75aa9e2a44eaba8bfffe2befdb291.jpg "Rootkit Malware Found in Signed Windows Driver")
In a statement posted in Microsoft’s Security Response Center, the company confirms it discovered the compromised driver and has suspended the account that originally submitted it. As pointed out by Bleeping Computer, this incident was likely caused by a weakness in the code-signing process, itself.
Chesnot / Getty Images
Microsoft also says that it has seen no evidence that the WHCP signing certificate was compromised, so it's unlikely that someone was able to fake certification.
