MERIT Solutions Blog

MERIT Solutions has been serving the Chesapeake area since 1982, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

“The Worst” Windows Bug Discovered... and Thankfully Fixed

“The Worst” Windows Bug Discovered... and Thankfully Fixed

Microsoft has resolved what a security researcher tweeted was “the worst Windows remote code exec” in his memory. This vulnerability allowed a targeted file to implement remote code execution processes, manipulating the infected system and spreading the infection to other machines. In other word, it’s a bad problem to have. The scariest part: the attack would be triggered if a particular file were to be scanned by the Microsoft Malware Protection Engine.

This vulnerability was uncovered and reported by researchers Tavis Ormandy and Natalie Silvanovich, of the Google Project Zero team. Taking to Twitter, the duo reported that they had made a discovery, reporting it to Microsoft and the Microsoft Security Response Center.

The MSRC confirmed the presence of the vulnerability, discovering that numerous pieces of software within the Microsoft Malware Protection Engine would allow a “specially crafted file” to begin running any code the attacker pleased on the system. This vulnerability was present on essentially every Windows machine, having been found on Windows 7, 8.1, and 10, and even affecting Windows RT.

While Microsoft pushed out this particular update, this story still serves as a reminder to keep all of your solutions up-to-date. There is a digital arms race that is waged between programmers and hackers, where each side tries to gain the upper hand over the other by improving their programs. This is one of the main reasons why your solutions have regular updates released, and why it is so important to implement these updates in a timely manner. Without these updates, your system is left vulnerable to threats that have been made preventable.

MERIT Solutions can help you to be sure that your company’s systems are updated. We’ll keep an eye out for any updates as well as warning signs of impending threats. For more information, give us a call at (757) 420-5150.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Sunday, 25 June 2017
If you'd like to register, please fill in the username, password and name fields.

Tag Cloud

Security Tip of the Week Cloud Technology Privacy Hackers Business Computing Best Practices Malware Hosted Solutions Backup Internet Software Computer Network Security Windows 10 google Productivity Business Microsoft Disaster Recovery Innovation Business Continuity Managed IT Services VoIP Hardware IT Services Business Management Mobility IT Support Mobile Devices Saving Money Productivity communications Ransomware Efficiency Save Money Windows Quick Tips Telephone Systems Apps Outsourced IT User Tips Smartphone Operating System Cybercrime Mobile Device Management Passwords Virtualization Data Server BDR Small Business Law Enforcement Email Information Technology Recovery VPN Facebook Managed IT Android Hacking browser Avoiding Downtime Health Password Wireless Miscellaneous Money Cybersecurity Social upgrade Budget Communication Hosted Solution Application Current Events Government Office 365 BYOD Automation Telephony Gadgets Alert Workplace Tips Cloud Computing USB Managed Service Provider Save Time Computers Office tips Private Cloud Social Media Chrome search Work/Life Balance App Smartphones Data Management Firewall Antivirus Battery Hacker HaaS Saving Time Solid State Drive Microsoft Office Internet Exlporer Wireless Technology Office Gmail Personal Information Computer Care Cleaning Google Drive Automobile Update Unsupported Software Users Mobile Computing Transportation DDoS Holiday Robot Applications Risk Management Television History End of Support Social Engineering Remote Computing Identity Theft Streaming Media Best Practice Internet of Things WiFi Samsung The Internet of Things Flexibility Disaster Audit Humor Going Green Bandwidth Employer-Employee Relationship Wi-Fi Sports Ali Rowghani Smart Technology OneNote Network Colocation Trending Value Two-factor Authentication Hard Drives Content Filtering Windows 10 User Error Tech Support Files Meetings Entertainment Administrator Lithium-ion battery Touchscreen Electronic Medical Records Vulnerability server installation dvd "cannot install required files" stock Point of Sale Relocation HIPAA Access Phishing iOS Black Market tweet Scam iPhone Politics Avoid Downtime Data Breach PDF Computer Fan Shadow IT calculator IT solutions Twitter Employer Employee Relationship Document Management Experience control Emails Text Messaging Keyboard Dark Web WSJ Computer Accessories Mobile Device Phone System Video Games Exchange altivista Marketing Shortcut Data Backup Virtual Reality Distributed Denial of Service Cost Management Music Legal SBS compaq Artificial Intelligence Hiring/Firing Nanotechnology Laptop Encryption Uninterrupted Power Supply Proactive IT Apple Vendor Management SaaS Analytics Webinar Wearable Technology hp Benefits Root Cause Analysis Touchpad Instant Messaging Reputation Worker Commute Unified Threat Management Advertising Big Data IT solutions domain Augmented Reality Managing Stress Training Upgrades Books Windows 10s Data storage Scalability remote Yahoo Compliance Spam Education eWaste Administration Chromecast Router Company Culture Consultant Hard Disk Drive How To Running Cable Server 2008

Mobile? Grab this Article!

QR-Code dieser Seite

Recent Comments

No comments yet.