Is Microsoft in trouble?
Microsoft is urging Windows users to immediately install an update after security researchers found a serious vulnerability in the operating system. The security flaw, known as PrintNightmare, affects the Windows Print Spooler service. Researchers at cybersecurity company Sangfor accidentally published a how-to guide for exploiting it.
The firm accidentally leaked instructions on how the flaw could be exploited by hackers, exacerbating the need for Windows users to update their systems immediately.
Reported vulnerabilities.
The researchers tweeted in late May that they had found vulnerabilities in Print Spooler, which allows multiple users to access a printer. They published a proof-of-concept online by mistake and subsequently deleted it – but not before it was published elsewhere online, including developer site GitHub.
What can the hackers do?
Microsoft warned that hackers that exploit the vulnerability could install programs, view and delete data or even create new user accounts with full user rights.
That gives hackers enough command and control of your PC to do some serious damage. Windows 10 is not the only version affected – Windows 7, which Microsoft has ended support for last year, is also subject to vulnerability.
Despite announcing that it would no longer issue updates for Windows 7, Microsoft issued a patch for its 12-year old operating system, underscoring the severity of the PrintNightmare flaw.