DigiCert

DigiCert operates as a certificate authority that issues digital certificates for securing online communications. Its core offerings include SSL/TLS certificates for websites, code signing certificates for software developers, and document signing certificates for electronic workflows. The company also provides public key infrastructure solutions tailored for Internet of Things devices and industrial control systems. Managed PKI services allow enterprises to outsource certificate lifecycle management while maintaining control over private keys. DigiCert’s certificates are trusted by all major web browsers and operating systems, enabling widespread deployment across commercial and government sectors.

DigiCert is an active participant in the CA/Browser Forum, helping shape baseline requirements for SSL/TLS certificates. The organization contributes to Certificate Transparency by operating logs that allow public monitoring of certificate issuance. Its DigiCert ONE platform provides an API‑driven, centralized console for automating certificate provisioning, renewal, and revocation across heterogeneous environments. The firm invests in post‑quantum cryptography research to prepare its offerings for future resistant algorithms. Through the 2017 acquisition of Symantec’s website security business, DigiCert expanded its customer base and strengthened its position as a leading provider of enterprise‑grade PKI solutions.

On April 1 2026, Microsoft Defender began flagging legitimate DigiCert root certificates as Trojan:Win32/Cerdigent.A!dha, causing false‑positive alerts and, on some systems, removal of those certificates from the Windows trust store. Around the same time, DigiCert disclosed a breach in which attackers compromised a support analyst’s device via a malicious ZIP file, used a support‑portal feature to obtain initialization codes for approved EV code‑signing certificates, and subsequently signed malware including the Zhong Stealer campaign targeting vendors such as Lenovo, Kingston, Shuttle Inc and Palit Microsystems. The authority revoked sixty code‑signing certificates linked to the incident, twenty‑seven of which were directly associated with the observed malware. In May 2020, attackers exploited critical SaltStack vulnerabilities (CVE‑2020‑11651 and CVE‑2020‑11652) to gain unauthorized access to DigiCert’s Certificate Transparency Log 2 signing key. Although no malicious use of the key was detected, the log was placed in read‑only mode as a precaution and certificate operations continued unaffected due to environmental separation.