NSA Cybersecurity Advisory: Patch Remote Desktop Services on Legacy Windows

[save_ferris]

That’s kinda like saying you’ll only take google seriously when they start releasing their SERP algorithms.

Zero-days are far more useful to them as exploitable points of entry as opposed to patches.

[CWuestefeld]

That suggests to me that there's a conflict of interest in the NSA's mission.

Perhaps it's not wise to have the same organization looking after both the defensive aspects of our security, AND also offensive espionage operations.