Major Windows 10 security flaw

© iStock.

Microsoft addressed a severe bug (CVE-2020-0601) in Windows 10 and Windows Server 2016/19 reported by the NSA that allows an attacker to spoof the digital signature tied to a specific piece of software. Such a weakness could be abused by attackers to make malware appear to be a benign program that was produced and signed by a legitimate software company. Don’t delay — patch today!

⇨ Krebs on Secutity, Brian Krebs, “Patch Tuesday, January 2020 Edition.”