Security News > 2020 > January > Podcast: NSA Reports Major Crypto-Spoofing Bug to Microsoft

Podcast: NSA Reports Major Crypto-Spoofing Bug to Microsoft
2020-01-15 20:47

A major Microsoft crypto-spoofing bug impacting Windows 10 made waves this Patch Tuesday, particularly as the flaw was found and reported by the U.S. National Security Agency.

Microsoft's January Patch Tuesday security bulletin disclosed the "Important"-severity vulnerability, which could allow an attacker to spoof a code-signing certificate, vital to validating executable programs in Windows, and make it appear as if an application was from a trusted source.


News URL

https://threatpost.com/podcast-nsa-reports-major-crypto-spoofing-bug-to-microsoft/151900/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 365 50 1369 2819 161 4399
NSA 2 0 2 7 5 14