[lynndotpy]

> The list of affected projects includes, but is not limited to, Virtual Private Network (VPN) software WireGuard, on-the-fly encryption (OTFE) utility VeraCrypt, the MemTest86 Random Access Memory (RAM) testing and diagnosis tool, and the Windscribe VPN software.

This, on top of the recent mystery app updates pushed by Apple, has me concerned. So much of security relies on the assumption that, say, Apple, Google, or Microsoft can't be coerced into pushing an update that undermines the entire security model. The "Apple gets hit with a wrench attack" is more salient nowadays.

Hopefully this is nothing but I think it's worth being vigilant. But judging by Microsoft's response, it seems more likely to be an administrative error commensurate with the state of their company rather than something more nefarious.