What is the FREAK attack and does IIS Crypto stop it?

The FREAK attack is a vulnerability that allows HTTPS traffic to be intercepted. It does this but trying to force the server to use old cipher suites that have long been insecure. If you are running Windows Server 2008 and above you will not be vulnerable in the default OS configuration. However, Windows Server 2003 is vulnerable with the default configuration. The Best Practices template in IIS Crypto solves this by removing the affected cipher suites. You do not need to download a new version as these ciphers have been disabled by IIS Crypto since the first version.

Microsoft has issued the security bulletin MS15-031. Additional information can be found here.