NSA: Windows 10 flaw threatens the foundations on which the Internet operates

Earlier today we wrote about a major vulnerability affecting Windows 10 and Server 2016 which was uncovered by the NSA who duly reported it to Microsoft. At the time details on the vulnerability were scarce, but now that Microsoft has issued a fix for it as part of its Patch Tuesday updates, the NSA has revealed its worrying findings. Neal Ziring, Technical Director - NSA Cybersecurity Directorate explains: CVE-2020-0601 is a serious vulnerability, because it can be exploited to undermine Public Key Infrastructure (PKI) trust. PKI is a set of mechanisms that home users, businesses, and governments rely upon in… [Continue Reading]