Apple code signing flaw could have made Mac malware look legit

For years it was possible to fool some security software into thinking malicious code had been digitally signed by Apple.