Quick Heal Announces SHA-1 Deprecation for its Products

SHA-1

 

What is SHA-1 and SHA-2, and deprecation of SHA-1?

SHA-1 & SHA-2 are algorithms a certificate uses to sign binaries, and Quick Heal also signs its binaries in the products. Quick Heal has been using dual (SHA-1 & SHA-2) code-signing for its products.

According to an announcement, Microsoft will no longer allow certificate providers to issue SHA-1 supported certificates. The SHA-1 hashing algorithm used for code-signing of Quick Heal products will expire on June 4, 2021, and we will use new credentials that only support the SHA-2 algorithm.

What will be the change in Quick Heal products?

All new software packages, hotfixes, or security patches of Quick Heal products created after June 4 2021 will use only SHA-2 Certificate for code-signing.

Please note, these changes do not affect any user experience and if you regularly install Windows updates, you do not have any action item.

What do I need to do?

Please find below the action items that are needed to be performed on specific operating systems:

1. Windows 7, Windows Server 2008 & Windows Server 2008 R2

How to check if the required MS Patch is already installed or not?

  • Open Control Panel
  • Go to Windows Update
  • From the Windows Update page, click on ‘View Update History.
2. Windows 8 & above
  • No action is required.
3. Windows Server 2012 & above
  • No action is required.
4. Windows XP & Windows Server 2003
  • No action is required.
5. Windows Vista
  • The latest Quick Heal products and feature updates (fixes and enhancements) code-signed with SHA-2 will not be supported.
  • Users will continue to receive only virus definitions.
  • We recommend customers having Windows Vista upgrade to the latest operating systems.

Recommendation

We recommend using the latest version of operating systems to avoid the risk of exploits targeting vulnerabilities of the operating system. Windows operating systems that Microsoft no longer supports can be potentially vulnerable as Security patches/updates are not released for this operating system by Microsoft.

Reference

Availability of SHA-2 Code Signing Support for Windows 7 and Windows Server 2008 R2

Quick Heal Support

Still, have queries? You can reach out to us at 1800-121-7377 or write to us at support@quickheal.com. You can also click here for further assistance.

Quickheal

Quickheal

You may also like...

The modus operandi of the Maze Ransomware

Way Out of The MAZE: A Quick Guide For Defending Against Maze Ransomware

Coronavirus-themed Campaign delivers Agent Tesla Malware

Ficker Stealer Malware tricks people into getting passwords

Ficker – An Info-Stealer Malware that tricks people to get their passwords

No Comments, Be The First!

Your email address will not be published.

CAPTCHA Image

This website uses cookies to ensure you get the best experience on our website. Learn more