Cryptic Rumblings Ahead of First 2020 Patch Tuesday January 13, 2020 https://krebsonsecurity.com/2020/01/cryptic-rumblings-ahead-of-first-2020-patch-tuesday/
"...Companies like Microsoft and Adobe use digital signatures to stamp software as authentic. This helps to prevent malware infections that might try to disguise themselves as legitimate. The NSA discovered an error in the Microsoft code that verifies those signatures, potentially enabling a hacker to forge the signature and install spyware or ransomware on a computer..." https://www.washingtonpost.com/nati...24c926-3679-11ea-bb7b-265f4554af6d_story.html