Your link says that Apple revoked the certificate used to sign the malware by the time the story was published.