Chinese military hackers use Microsoft signing key to target US defense companies

Microsoft inadvertently sent out its signing key in an obscure build, which the Chinese military has picked up and now use to sign legitimate looking Microsoft updates targeted to specific individuals in the US, specifically in the defense industry.