Department of Homeland Security Issues Emergency Directive for Microsoft Critical Vulnerabilities

Microsoft released several updates to address critical vulnerabilities. Several were of sufficient concern to encourage the Homeland Security  Department to issue an Emergency Directive directing all federal agencies to patch these vulnerabilities in the next ten days. The vulnerabilities are present on both RDP Gateway Servers & RDP Clients, in the Windows CryptoAPI, as well as the Remote Desktop Protocol (RDP). Here are the descriptions with links to the Microsoft Security Center so you can review the KB articles associated with them. CVE-2020-0601 is a CryptoAPI spoofing vulnerability and affects Windows 10, Server 2016, and Server 2019, and could potentially allow an attacker to bypass antivirus and perform malicious actions on an affected endpoint.…