-
PoC for CVE-2020-0601
#x509#crypt32 https://github.com/ollypwn/cve-2020-0601 …pic.twitter.com/gg5toHwpht
-
#PatchTuesday#crypt32.dll So... CVE-2020-0601 means#x509 is totaly broken if ECC, But why is nobody talking about CVE-2020-0609, a pre-auth RCE on RDP !!?pic.twitter.com/oLQ92k1MAE -
From here on,
#crypt32 CVE-2020-0601 shall be referred to as "Bill and Ted's Bogus Curve"
https://twitter.com/panther_modern/status/1217356158639407104 … -
hopefully
@Microsoft spin up more instances in Azure to handle the load of those checking#crypt32 pic.twitter.com/E8PlW6fA0j
-
@Microsoft@NSAGov , notice which day i modified the#crypt32, its still open. i bought http://crypt32.com too.pic.twitter.com/tuo0bhVe2n
-
Need to brief your boss about the Microsoft CryptoAPI flaw? We got some PPTs for you to use: https://isc.sans.edu/presentations/TalkingToYourBossAboutCryptoAPI.pptx …
#cryptoapi#crypt32.dll#cve-2020-0601#microsoftpic.twitter.com/jD1GXdtzAQ
-
the cookie conscience of today rape. bloomberg supports rape. how disgusting
@Microsoft@Windows he must not of read the report on#crypt32. -
Certificate verification, time validity or trusted root error. #crypt32 -
Anyone who sees this message, run all Windows updates on any Windows computer NOW, reboot and run again manually until totally up to date, in preparation for the patches released later today (Tuesday). Start now.
#crypt32 -
Do not forget: We do have a special webcast coming up in 2hrs
@malwarejake will walk you through some fo the issues to consider with CVE-2020-0601, the#Microsoft#CryptoAPI vulnerability#crypt32.dll https://sans.org/cryptoapi-isc -
#Cryptic Rumblings Ahead of First 2020#PatchTuesday#Windows@Microsoft#crypt32 https://buff.ly/36TlPsu -
This
#ubuntuesday you are strongly encouraged to implement the recently released#LXD 3.19 patch immediately.#nsaOK@omgubuntu#crypt32 https://twitter.com/ubuntu/status/1218283147714093058 …pic.twitter.com/J5gGTYAQmX
-
Does the
#crypt32.dll lead to RCE? -
Well aware of stories doing the rounds around this apparent vuln in crypt32.dll. Not writing a damn thing on it until we've seen the patch though; call me old fashioned. If crypto's your bag & you have comment when it drops, we'd welcome your thoughts then.
#patchtuesday#crypt32 -
The NSA
#Crypt32 threat is real, but not yet imminent by WEoody Leonhard https://www.computerworld.com/article/3514350/patch-tuesday-aftermath-the-nsa-crypt32-threat-is-real-but-not-yet-imminent.html …@Computerworld@AskWoody -
Today is CryptoDay (better than
#icecreamday?)! Get ready for a critical/must patch now issue from#MSFT affecting#crypt32.dll /#CryptoAPI@wdormann -
#crypt32 errors#popping up on new moss web front ends when office... http://www.Go4Sharepoint.com/Forum/crypt32-errors-popping-moss-web-front-10891.aspx … -
Great tweet chain explaining the significance/impact of the
#CryptoAPI vulnerability. TLDR; anything that relies on certificate chains is vulnerable and cannot be trusted (TLS, Authenticode, Cert based Auth, etc.).#PatchTuesday#crypt32#DirtyCertyhttps://twitter.com/taviso/status/1217146026923978752 … -
#crypt32#chainoffools active in the wild 2 years plus, producing identical certs amending date and time with Unicode character translator#Zalgo@NakedSecurityShow this thread
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.