One of the security vulnerabilities fixed on Tuesday 11 August (Patch Tuesday) affects Windows 7, Windows 8.1, Windows 10 and several editions of it Windows Server and itself Microsoft has reported seeing attacks using this flaw.
It is a forgery vulnerability in the operating system and documented in CVE-2020-1464.
"There is a vulnerability to counterfeiting when Windows incorrectly validate file signatures. An attacker who successfully exploits this vulnerability could override the security features and upload unsealed files. "In an attack scenario, an attacker could bypass security features in order to prevent improperly signed files from being loaded." Microsoft.
The company knew that exploit was operating and that it was publicly disclosed in 2018.
KrebsOnSercurity reveals that counterfeiting vulnerability was reported in Microsoft by Bernardo Quintero, director of VirusTotal.
Tal Be'ery, security researcher and founder of KZen Networks, also points out that the defect was discovered in the summer of 2018 and in a way Microsoft decided not to correct it.
OR Microsoft, on the other hand does not answer why it left its customers' devices exposed for so long from 2018 and waiting until August 2020 to resolve the defect.
Mention that the devices with Windows 7, who themselves are exposed to the same attack, will not be informed as its support expired in January 2020.