Logitech Certificate Expiration Breaks App
Tim Hardwick (Slashdot, Hacker News):
Logitech users on macOS found themselves locked out of their mouse customizations yesterday after the company let a security certificate expire, breaking both its Logi Options+ and G HUB configuration apps.
Logitech devices like its MX Master series mice and MX Keys keyboards stopped working properly as a result of the oversight, with users unable to access their custom scrolling setup, button mappings, and gestures. It wasn't long before the Logitech subreddit was awash with frustrated reports as people discovered their configured peripherals had suddenly reverted to default settings.
This article is technically inaccurate, sigh.
All Developer ID code signing certificates expire eventually, and macOS does NOT prevent software with an expired certificate from running, otherwise all of your older apps would be dead now.
Logitech was doing some ADDITIONAL validation of their own design, and that's where the problem occurred.
Because the certificate also affected the in‑app updater, you will need to manually download and install the updated version of the app. Please do not uninstall the app and follow the steps below.
[…]
The certificate that expired is used to secure inter-process communications and the expiration resulted in the software not being able to start successfully.
Previously:
- Inside Code Signing: Certificates
- Mac Security Bugs Expose Location and Safari History
- CoreFollowUp Phishing
- HP Printer Driver Certificate Revoked
- Security Flaws in Adobe Acrobat Reader
- Privileged Operations on macOS
- Beware Apple Security Certificates After October 24
- PrivilegedHelperTools and Checking XPC Peers
Update (2026-01-08): Jeff Johnson (Mastodon):
The news reporting on this incident included misinformation about how macOS Developer ID code signing works.
[…]
These stories place the blame on macOS for refusing to run apps with expired Developer ID code signing certificates, but this is false! Apple documents the behavior on its certificates support page:
If your certificate expires, users can still download, install, and run versions of your Mac applications that were signed with this certificate. However, you’ll need a new certificate to sign updates and new applications.[…]
In other words, there’s nothing to worry about until the year 2035 at the earliest, though admittedly it’s a bit troubling that these apps have a ticking time bomb, so to speak. On the other hand, Developer ID provisioning profiles are optional, used only for a few features such as iCloud support, so many or even most Developer ID signed Mac apps have no provisioning profile, and thus no expiration.
A Logitech spokesperson replying to angry Redditors said the company was sorry for the issue and resulting disruption.
They wrote: “We dropped the ball here. This is an inexcusable mistake. We’re extremely sorry for the inconvenience caused.”
5 Comments RSS · Twitter · Mastodon
I do agree with Jeff that the reporting/statements from Logitech are technically inaccurate, and further that they are indications of a terrible design here.
Someone please correct me if I'm wrong, but there has to be a better way to store basic mouse and keyboard settings than a constantly running app that constantly requires multiple layers of third party blessings to even run.
> Please do not uninstall the app
You're at least 10 years too late for that, Logitech. I use your keyboards and mice but I learned long ago to avoid your software like the plague.
"there has to be a better way to store basic mouse and keyboard settings than a constantly running app that constantly requires multiple layers of third party blessings to even run"
Some manufacturers store settings directly to the hardware device, which is a much better design. However, this doesn't support some of the more advanced features offered by software.
While I severely dislike G HUB, I don't find Options+ too objectionable. It's not worse than what most other companies foist upon their users. Having said that, I just use SteerMouse.
