They are using special flags [1] to "disable" these certs. And this make them very easy to "revert" these changes.
[1] https://learn.microsoft.com/en-us/security/trusted-root/deprecation 在2023年8月31日星期四 UTC+8 00:39:27<Dan Collins> 写道: Have they revoked those certificates, or have they removed those certificates from the Windows trust store? Also, doesn't that article say that the change was already reversed? On Wed, Aug 30, 2023 at 12:32 PM Yuwei HAN (hanyuwei70) <[email protected]> wrote: On Aug.23 2023, Microsoft revoked some CAs causing some software with Code Signing signatures can't run, without any notification. And it has made lots of confusion to system admins. Today Microsoft still not responding in CCADB, so I am here to raise some attention. https://arstechnica.com/security/2023/08/a-renegade-certificate-is-removed-from-windows-then-it-returns-confusion-ensues/ -- You received this message because you are subscribed to the Google Groups "CCADB Public" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/ccadb.org/d/msgid/public/da3f8a17-819b-4ceb-8594-254f92dcb890n%40ccadb.org <https://groups.google.com/a/ccadb.org/d/msgid/public/da3f8a17-819b-4ceb-8594-254f92dcb890n%40ccadb.org?utm_medium=email&utm_source=footer> . -- You received this message because you are subscribed to the Google Groups "CCADB Public" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/ccadb.org/d/msgid/public/c16dab99-0904-4285-984d-d857d2f1774cn%40ccadb.org.
