The Flame cyberespionage attack took a new twist today as Microsoft issues an emergency patch for all versions of Windows. The software giant did not give details on the actual attack, but according to new analysis by Kaspersky Lab, a Flame module named “Gadget” was used to infect other machines in the same network as the targeted machine, therefore spreading more widely within the targeted organization. The attackers preyed on apparent weak encryption in Microsoft’s Terminal Services, which lets enterprises enable Remote Desktop services.”]
Source: https://www.darkreading.com/attacks-breaches/flame-burns-microsoft-with-digital-certificate-hack