September 28, 2023

Dangerous Vulnerability Affecting Windows 10 Computers

4 years ago Xia J

The National Security Agency (NSA) has uncovered a dangerous vulnerability that affects millions of computers running Windows 10, as well as, Windows Server 2016 and 2019.

 

The vulnerability (CVE-2020-0601) is found in Windows cryptographic functionality, which allows developers to carry out a range of functions such as digitally sign into their software. But NSA says the vulnerability could allow attackers to spoof legitimate software and carry out a remote code execution attack.

 

“The user would have no way of knowing the file was malicious, because the digital signature would appear to be from a trusted provider,” Microsoft said.

 

Currently, there’s no evidence that the vulnerability is being exploited in the wild.

 

However, the vulnerability is so concerning that Microsoft sent a patch to the US military prior to the public release of the fix on Patch Tuesday, reported security researcher Brian Krebs.

 

The NSA recommends that everyone install “all January 2020 Patch Tuesday patches as soon as possible.”

Xia J

See author's posts

More Stories

Cash App Warns 8.2 Million Customers of Insider Breach

1 year ago L7 News

The Third-Party Okta Hack Is Bad

2 years ago L7 News

Apple Park partially evacuated after envelope with white powder substance was discovered

2 years ago newsr00t

You may have missed

Cash App Warns 8.2 Million Customers of Insider Breach

1 year ago L7 News

The Third-Party Okta Hack Is Bad

2 years ago L7 News

Apple Park partially evacuated after envelope with white powder substance was discovered

2 years ago newsr00t

FBI: Ransomware Gang Breached 52 U.S. Critical Infrastructure Orgs

2 years ago newsr00t

Microsoft Warns About New App-Based Attack Angle

3 years ago L7 News