Microsoft Defender Mistakenly Flags DigiCert Root Certificates as Malware

📅 3 May 2026 at 16:55 UTC📰 Cyber Security NewsView original source ↗

Microsoft Defender triggered widespread false positive alerts after a faulty security update caused it to flag two legitimate DigiCert root certificates as malicious, potentially disrupting SSL/TLS validation and code-signing operations across enterprise environments worldwide. A Defender antimalware signature update released around April 30, 2026, introduced a detection labeled Trojan:Win32/Cerdigent.A!dha, which incorrectly identified registry entries belonging […] The post Microsoft Defender Mistakenly Flags DigiCert Root Certificates as Malware appeared first on Cyber Security News.

🤖 AI BriefingAuto-generated threat analysis

🔍Threat Overview

Microsoft Defender mistakenly flagged two legitimate DigiCert root certificates as malicious, causing widespread false positive alerts and potentially disrupting enterprise environments' SSL/TLS validation and code-signing operations. The faulty security update was released around April 30, 2026.

⚙️Technical Details

Affected Systems

Enterprise environments with Microsoft Defender installed

Attack Vectors

Registry entries

💥Impact Assessment

Severity: High

Who Is at Risk

Enterprise environments with Microsoft Defender installed

🛡️Recommended Actions

1Immediately disable the faulty security update

2Monitor system logs for further false positive alerts

3Verify and validate DigiCert root certificates to ensure correct configuration

📦Affected Products

Microsoft Defender

Read the full article

This is a curated summary. The complete article is available at Cyber Security News.

Read on Cyber Security News ↗

← Back to feed