A major Microsoft bug impacting Windows 10 made waves this Patch Tuesday, particularly as the flaw was reported by the U.S. National Security Agency. The flaw could allow an attacker to spoof a code-signing certificate, vital to validating programs in Windows, and make it appear as if an application was from a trusted source. Threatpost talked to Pratik Savla, senior security engineer at Venafi, about the vulnerability and what the disclosure means for the NSA. For more from Threatpost click here.
Source: https://threatpost.com/podcast-nsa-reports-major-crypto-spoofing-bug-to-microsoft/151900/