Microsoft have released an urgent advisory to install all of the latest security updates to Windows 10, Windows Server 2016 and Windows Server 2019, due to a vulnerability that could allow a spoofed secure connection to a website to appear genuine.
Microsoft have said:
A spoofing vulnerability exists in the way Windows CryptoAPI (Crypt32.dll) validates Elliptic Curve Cryptography (ECC) certificates.
An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted, legitimate source. The user would have no way of knowing the file was malicious, because the digital signature would appear to be from a trusted provider.
A successful exploit could also allow the attacker to conduct man-in-the-middle attacks and decrypt confidential information on user connections to the affected software.
The security update addresses the vulnerability by ensuring that Windows CryptoAPI completely validates ECC certificates.
Please ensure you have installed all Windows updates on all business and personal devices.
To remove the headache of manual updates and to implement automatic management of your Windows updates please speak to your account manager to see how IT3000 can help.
For more information call us on 01455 247 830 or 01202 830 830
or email your account manager.