Windows 10: Compromised code signing certificate

I would like to report to Microsoft that the private key of the MEDIATEK INC. certificate with the serial number 56f008e69a7c4c3feb389c66eaf58259 has had its private key compromised by bad actors and that the validity of this certificate should be revoked immediately. Where should I report this? I have proof that it is compromised and I would like inform Microsoft of this.

:)

 

Whitelisting code signing certificates signed by internal CA in AppLocker

In Windows 10's AppLocker, it is possible to whitelist applications and libraries signed by a given publisher:





In our case, we have a number of developers producing libraries and signing them with code signing certificates which are signed by an internal CA. The wizard pictured above can be used to whitelist the libraries developed by an individual developer.

As such, what I'm wondering is if there is a (preferred) way to whitelist all code signing certificates signed by a given CA, in this case the internal one?

 

How to sign Powershell profile w/ self-signed certificate?

I currently have my execution-policy set to AllSigned. I don't want to change it or bypass that restriction.

When I created my profile script--or whatever it's called--I wanted to do so in order to set permanent aliases.

For whatever reason, Microsoft has made it an ever increasingly difficult endeavor just to create permanent aliases.

The problem now is that it won't run the script because it isn't digitally signed.

I attempted to make a self-signed certificate to sign the blasted thing but I never got anywhere.

I've looked at a few guides online but they all assume I'm in a server environment or something (which means the steps keep changing or involve unnecessary steps).

In the end, I wound up with a code-signing cert and the thing is in my current-user cert store.

I'm trying to get this to work on my Windows 10 Pro desktop but I haven't a clue as to what I'm actually supposed to be doing.

Is it even possible to get what I'm asking for? *Confused

P.S. - I have no experience with either Powershell or certificates. The only reason I know what I've mentioned so far is because I spent 2-3 minutes glossing over the help files. My knowledge of PKI has me understanding that you need a private key to sign something, but I can't even get the certificate to validate my own key so it's kind of getting me flustered at this point.