FREAK vulnerability can affect Windows, as well

The FREAK vulnerability isn't just placing Apple, Android, and OpenSSL users at risk. Microsoft has discovered that all current versions of Windows are also susceptible to man-in-the-middle attacks. Here's what Redmond has to say about the vulnerability:

Microsoft is aware of a security feature bypass vulnerability in Secure Channel (Schannel) that affects all supported releases of Microsoft Windows. Our investigation has verified that the vulnerability could allow an attacker to force the downgrading of the cipher suites used in an SSL/TLS connection on a Windows client ...

Read more...