Blueliv Intelligence Briefing

Your cybersecurity news summary

Tuesday,   August 18th,   2020

Welcome to today’s intelligence briefing, covering noteworthy items on the cybersecurity news agenda.

Find these stories on the Blueliv Threat Exchange Network, a global community of thousands of cybersecurity experts, IT professionals and academics. Membership is free.

Read the latest research blogs from the Blueliv Labs team.

Microsoft fixes Zero Day flaw reported 2 years ago

This vulnerability is tracked as CVE-2020-1464 and is described by Microsoft as a spoofing vulnerability in how Windows validates signature files. It was later noted in a blog post by some security researchers that this update is for a bug reported two years ago on August 18th, 2018, and that Microsoft originally stated they would not be fixing. With the patch for CVE-2020-1464, Windows will no longer considered MSI files to be signed if they have been tampered by having a JAR file appended to it. Learn more >

Demo Free Trial MSSP