Blueliv Intelligence Briefing
Your cybersecurity news summary
Welcome to today’s intelligence briefing, covering noteworthy items on the cybersecurity news agenda.
Find these stories on the Blueliv Threat Exchange Network, a global community of thousands of cybersecurity experts, IT professionals and academics. Membership is free.
Microsoft fixes Zero Day flaw reported 2 years ago
This vulnerability is tracked as CVE-2020-1464 and is described by Microsoft as a spoofing vulnerability in how Windows validates signature files. It was later noted in a blog post by some security researchers that this update is for a bug reported two years ago on August 18th, 2018, and that Microsoft originally stated they would not be fixing. With the patch for CVE-2020-1464, Windows will no longer considered MSI files to be signed if they have been tampered by having a JAR file appended to it. Learn more >