{"id":238827,"date":"2026-05-04T05:00:00","date_gmt":"2026-05-04T09:00:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/04\/microsoft-defender-misidentifies-digicert-certificates-as-malware-triggering-global-disruptions\/"},"modified":"2026-05-04T05:30:13","modified_gmt":"2026-05-04T09:30:13","slug":"microsoft-defender-misidentifies-digicert-certificates-as-malware-triggering-global-disruptions","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/04\/microsoft-defender-misidentifies-digicert-certificates-as-malware-triggering-global-disruptions\/","title":{"rendered":"Microsoft Defender Misidentifies DigiCert Certificates As Malware, Triggering Global Disruptions"},"content":{"rendered":"<p><a href=\"https:\/\/www.linkedin.com\/pulse\/microsoft-defender-misidentifies-digicert-certificates-n9yne\">Microsoft Defender Misidentifies DigiCert Certificates As Malware, Triggering Global Disruptions<\/a><\/p>\n<p><a href=\"https:\/\/www.linkedin.com\/pulse\/microsoft-defender-misidentifies-digicert-certificates-n9yne\">https:\/\/www.linkedin.com\/pulse\/microsoft-defender-misidentifies-digicert-certificates-n9yne<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-04 05:00:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.linkedin.com\">www.linkedin.com<\/a><\/p>\n<p>\n          <span class=\"\">A significant technical malfunction in <\/span><span class=\"font-[700]\">Microsoft Defender<\/span><span class=\"\"> has triggered widespread alarm across the global cybersecurity community, after the platform mistakenly identified legitimate digital certificates issued by <\/span><span class=\"font-[700]\">DigiCert<\/span><span class=\"\"> as malicious software. The error, which surfaced in late April, led to false-positive detections labeled <\/span><span class=\"italic\">Trojan:Win32\/Cerdigent.A!dha<\/span><span class=\"\"> and, in some cases, the automatic removal of critical certificates from Windows systems.<\/span>\n        <\/p>\n<p><h3><span class=\"\">False Positives Spark Global Concern<\/span><\/h3>\n<\/p>\n<p>\n          <span class=\"\">The issue first emerged following a routine security intelligence update rolled out on April 30. Shortly afterward, system administrators and IT professionals across multiple regions began reporting anomalous alerts. These warnings indicated that trusted DigiCert root certificates\u2014essential components of secure internet communication\u2014were being flagged as trojans.<\/span>\n        <\/p>\n<p>\n          <span class=\"\">It appears the detections coincided precisely with the Defender signature update. As reports multiplied, it became clear that the problem was not isolated but affecting enterprise environments, managed networks, and individual users alike.<\/span>\n        <\/p>\n<p>\n          <span class=\"\">On impacted machines, the flagged certificates were not only detected but also removed from the Windows trust store, specifically within the system registry path:<\/span>\n        <\/p>\n<p>    <span class=\"\">HKLMSOFTWAREMicrosoftSystemCertificatesAuthRootCertificates        <\/span><\/p>\n<p>\n          <span class=\"\">The removal of these certificates can disrupt secure connections, software validation, and encrypted communications\u2014core functions of modern operating systems.<\/span>\n        <\/p>\n<p>             &#8230;<br \/>\n<br \/><a href=\"https:\/\/www.linkedin.com\/pulse\/microsoft-defender-misidentifies-digicert-certificates-n9yne\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft Defender Misidentifies DigiCert Certificates As Malware, Triggering Global Disruptions https:\/\/www.linkedin.com\/pulse\/microsoft-defender-misidentifies-digicert-certificates-n9yne Publish Date: 2026-05-04 05:00:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":238828,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/media.licdn.com\/dms\/image\/v2\/D4E12AQEm2JTWtqSODQ\/article-cover_image-shrink_720_1280\/B4EZ3vZ.QJIcAU-\/0\/1777838060734?e=2147483647&v=beta&t=S91sAqRbz0IoTcnrzo1FLW-g16a9aoldJIL98jPHbjQ","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[32,57],"class_list":["post-238827","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-malware","tag-security"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/238827"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=238827"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/238827\/revisions"}],"predecessor-version":[{"id":238829,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/238827\/revisions\/238829"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/238828"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=238827"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=238827"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=238827"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}