Hacker News new | past | comments | ask | show | jobs | submit login

May be their attack is so specific that they could only use Microsoft signed files in update payload, so they send old vulnerable versions.

That would be an amazing exploit. I doubt it's the case, and I hope it's not, but it would be pretty amazing.

Applications are open for YC Winter 2020

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact