HEAD-DESK! The same cert was used in software you could be running!
HP accidentally signed some malware, according to
Krebs on Security.
Krebs reports that the certificate was “used to cryptographically sign software components that ship with many of its older products”, mostly for PC software, but that back in 2010 it was also used to sign some malware.
HP will therefore revoke the certificate, which means a bit of extra work for those using the HP software that relies on it and maybe a few discomforting moments when folks try to use recovery partitions on HP PCs equipped with rollback facilities.
