Windows 10 Vulnerability Discovered By Google

Posted on December 06, 2016.

Be alert Windows 10 users! Google researchers had uncovered what seemed to be a serious security vulnerability in Windows code that was being exploited for almost 3 weeks.  The flaw that Google discovered on October 21st also affected Adobe’s Flash media player.  In order for a system to be affected, malware must first exploit Adobe’s Flash player to gain control of a web browser, and then elevate privileges in order to escape the browser’s sandbox, and then finally install a backdoor to provide access to the victim’s computer. The other flaw, which existed in Windows kernel, can be used as a “security sandbox escape”, in the words of Google.  However, Microsoft has indeed issued a statement on the Windows 10 breach, which they’ve named “Strontium”.

Sources close to Microsoft have shared that the exploit that Google had discovered requires the Adobe Flash vulnerability. In addition, those who have installed the Windows 10 Anniversary Update, which was first released in August of this year, would not have been affected by the vulnerability being exploited at all.  The good news is that as of November 8, 2016, Adobe has issued a fix for their Flash player, and Microsoft has issued a fix on their end as well.  Vulnerabilities like this are fairly common in the PC world, but if you have a dedicated IT specialist to set up security measures to fight these vulnerabilities, then you wouldn’t have to worry about them.  Having a trusted firewall, malware, and anti-virus systems in place are critical to the safety and privacy of your systems. If you feel like your system is at risk, feel free to contact us today and we can make sure that your system is secure and safe from potential breaches, as well as data hacks.