Insecurity as a Service: Microsoft Fixes Windows Crypto Bug
"Microsoft has released a security update to fix a dangerous vulnerability that impact Windows 10 operating system. The bug was discovered and reported by the US National Security Agency. A spoofing vulnerability exists in the way Windows CryptoAPI validates Elliptic Curve Cryptography certificates, Microsoft said in a statement."