Leaks and patches.
Among the ninety-six fixes Redmond distributed Tuesday were some that addressed obsolete software. The exploits loosed by the last round of ShadowBrokers leaks, those pertaining to EternalBlue and enabling WannaCry, prompted Microsoft to take the very unusual step of reaching back to deprecated, beyond-end-of-life systems and issuing patches for them. With this Patch Tuesday, the last of the alleged NSA exploit tools now have publicly available fixes. The security community has regarded this with a degree of ambivalence. To be sure, remediations are welcome, but on the other hand many don't want to enable the bad practice of clinging to aged legacy systems whose security issues are likely to grow with time, however much they're patched (CSO).
Another tranche of WikiLeaks' Vault7 was dumped late Thursday. The documents purport to represent instructions for an alleged CIA implant, "CherryBlossom," said to have been in use against popular home Wi-Fi routers since 2007 (WIRED). Updated and patched versions of the routers or their successors are believed to be secure against CherryBlossom, but unfortunately home Wi-Fi routers, like networked security cameras used in mom-and-pop stores, are notoriously among the last things anyone considers patching.