MERIT Solutions Blog

MERIT Solutions has been serving the Chesapeake area since 1982, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

“The Worst” Windows Bug Discovered... and Thankfully Fixed

“The Worst” Windows Bug Discovered... and Thankfully Fixed

Microsoft has resolved what a security researcher tweeted was “the worst Windows remote code exec” in his memory. This vulnerability allowed a targeted file to implement remote code execution processes, manipulating the infected system and spreading the infection to other machines. In other word, it’s a bad problem to have. The scariest part: the attack would be triggered if a particular file were to be scanned by the Microsoft Malware Protection Engine.

This vulnerability was uncovered and reported by researchers Tavis Ormandy and Natalie Silvanovich, of the Google Project Zero team. Taking to Twitter, the duo reported that they had made a discovery, reporting it to Microsoft and the Microsoft Security Response Center.

The MSRC confirmed the presence of the vulnerability, discovering that numerous pieces of software within the Microsoft Malware Protection Engine would allow a “specially crafted file” to begin running any code the attacker pleased on the system. This vulnerability was present on essentially every Windows machine, having been found on Windows 7, 8.1, and 10, and even affecting Windows RT.

While Microsoft pushed out this particular update, this story still serves as a reminder to keep all of your solutions up-to-date. There is a digital arms race that is waged between programmers and hackers, where each side tries to gain the upper hand over the other by improving their programs. This is one of the main reasons why your solutions have regular updates released, and why it is so important to implement these updates in a timely manner. Without these updates, your system is left vulnerable to threats that have been made preventable.

MERIT Solutions can help you to be sure that your company’s systems are updated. We’ll keep an eye out for any updates as well as warning signs of impending threats. For more information, give us a call at (757) 420-5150.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Tuesday, 22 May 2018

Captcha Image

Tag Cloud

Security Tip of the Week Technology Best Practices Cloud Privacy Business Computing Network Security Hackers Malware Software Internet Hosted Solutions Backup google Productivity Business Management Managed IT Services Mobile Devices Disaster Recovery VoIP Computer Microsoft Outsourced IT Business Continuity Business IT Support communications Email Cybersecurity User Tips Windows 10 Productivity Innovation IT Services Hardware Efficiency Data Backup Cybercrime Server Ransomware Small Business Apps Mobility Windows Saving Money Mobile Device Management Managed IT browser Data Recovery Data Law Enforcement Internet of Things Smartphone Operating System Virtualization Telephone Systems Save Money Tech Term Android Passwords BDR Money Phishing Cloud Computing Smartphones Data Security Hosted Solution Quick Tips BYOD Automation Password Holiday Information Technology Chrome Recovery Communication Office 365 VPN Microsoft Office Google Drive Hacking Avoiding Downtime Two-factor Authentication Wireless Alert Update Health Gadgets Miscellaneous Managed Service Provider Vulnerability Risk Management Computers Unsupported Software Social Media Best Practice Data Breach Social upgrade Work/Life Balance Cost Management Budget Wi-Fi Data Management App Network Collaboration IT Support Facebook Government Politics Telephony USB Windows 10 Cleaning Save Time Workplace Tips Spam Private Cloud Office tips Applications History Identity Theft Managed IT Services Proactive IT Social Engineering Flexibility Streaming Media Shortcut The Internet of Things search Firewall Employer-Employee Relationship Application Antivirus Current Events Audit Data Protection User Error Personal Information Wireless Technology Commerce Value Gmail iPhone Saving Time Cortana Mobile Computing Patch Management Office Transportation Computer Care IT solutions Phone System Blockchain DDoS Robot Legal Users Wireless Charging Encryption Excel Mobile Security End of Support Remote Computing Data Storage Devices Television Artificial Intelligence OneNote Big Data Apple WiFi Disaster Fraud Humor Going Green Data Loss Bandwidth Marketing SaaS Samsung eWaste Google Docs Sports Content Filtering Battery HaaS Tech Support Project Management Compliance Hacker Solid State Drive Internet Exlporer Redundancy Automobile Content Filter stock Storage Avoid Downtime Credit Cards Shadow IT WIndows Server 2008 Hard Disk Drive intranet Document Management Tablets Root Cause Analysis Computing Monitoring PDF Experience tweet FAQ IT budget calculator NFL Augmented Reality Analysis Business Intelligence Management Touchscreen Maintenance Text Messaging Twitter Lifestyle Video Games Charger Virtual Reality control Outlook App store Scam Word Managed IT Service Financial Technology Device Security Music WSJ Legislation Exchange iOS Identities Employer Employee Relationship Distributed Denial of Service altivista Windows Ink Uninterrupted Power Supply Printing Analytics Laptop Comparison Keyboard Evernote Instant Messaging SBS Regulation Computer Fan IoT Identity Computer Accessories Worker Commute compaq Google Maps Screen Mirroring Google Assistant Spyware Mobile Device Touchpad Specifications Reputation Wearable Technology Networking Managing Stress Sync Dark Web Language Data Privacy Advertising hp Software as a Service Meetings Sales Scalability Cast Computer Forensics Emails Books Hiring/Firing Workers Education domain Adobe Settings Hard Drive Vendor Management Data storage Router Retail How To Edge Benefits Administration Updates Chromecast remote Licensing WannaCry Virus Chromebook Yahoo Conferencing HBO Webinar Ciminal Unified Threat Management Colocation Running Cable Microsoft Word Server 2008 Mobile Proactive Smart Tech Training Hard Drives Entertainment Ali Rowghani Microsoft Excel Gifts Files IT solutions Upgrades Trending Electronic Medical Records Point of Sale Administrator Professional Services Lithium-ion battery Websites Connectivity Company Culture HIPAA File Sharing Black Market IT Management Windows 10s MSP Consultant Safety Smart Technology Relocation Access server installation dvd "cannot install required files" Travel Nanotechnology Data Theft Thank You Emergency Congratulations Worker CrashOverride Cache Monitors Remote Monitoring

Mobile? Grab this Article!

QR-Code dieser Seite

Recent Comments

Anna Jackson 5 SEO Tools To Get a Google-Eye View of Your Website
15 September 2017
Hello Randall! I was doing very important work but due to your subject I felt better to stay at you...
David Miller Not all project-management tools are right for all businesses
25 August 2017
All the points depicted by you in this blog is v.apt. I love the title of this blog because it says ...