{"id":100868,"date":"2020-01-15T01:06:15","date_gmt":"2020-01-15T09:06:15","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2020\/01\/microsoft-nsa-say-security-bug-affects-millions-of-windows-10-computers"},"modified":"2020-01-15T01:06:15","modified_gmt":"2020-01-15T09:06:15","slug":"microsoft-nsa-say-security-bug-affects-millions-of-windows-10-computers","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2020\/01\/microsoft-nsa-say-security-bug-affects-millions-of-windows-10-computers","title":{"rendered":"Microsoft, NSA say security bug affects millions of Windows 10 computers"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/microsoft-nsa-say-security-bug-affects-millions-of-windows-10-computers.jpg\"><\/a><\/p>\n<p><a class=\"\" href=\"https:\/\/crunchbase.com\/organization\/microsoft\" target=\"_blank\" data-type=\"organization\" data-entity=\"microsoft\">Microsoft<\/a> has released a security patch for a dangerous vulnerability affecting hundreds of millions of computers running Windows 10.<\/p>\n<p>The vulnerability is <a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2020-0601\">found<\/a> in a decades-old Windows cryptographic component, known <a href=\"https:\/\/kb.cert.org\/vuls\/id\/849224\/\">as CryptoAPI<\/a>. The component has a range of functions, one of which allows developers to digitally sign their software, proving that the software has not been tampered with. But the bug may allow attackers to spoof legitimate software, potentially making it easier to run malicious software \u2014 like ransomware \u2014 on a vulnerable computer.<\/p>\n<p>\u201cThe user would have no way of knowing the file was malicious, because the digital signature would appear to be from a trusted provider,\u201d Microsoft said.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Microsoft has released a security patch for a dangerous vulnerability affecting hundreds of millions of computers running Windows 10. The vulnerability is found in a decades-old Windows cryptographic component, known as CryptoAPI. The component has a range of functions, one of which allows developers to digitally sign their software, proving that the software has not [\u2026]<\/p>\n","protected":false},"author":396,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[34,1412],"tags":[],"class_list":["post-100868","post","type-post","status-publish","format-standard","hentry","category-cybercrime-malcode","category-privacy"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/100868","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/396"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=100868"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/100868\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=100868"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=100868"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=100868"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}