Google revealed to the public weakness Security Which was found in the latest Windows system after Microsoft did not block it for a week. Let's see the reaction of the Redmond Giant
In a post she published this week In her security blog, Google Revealed to the public that it has identified critical security vulnerabilities in Windows 10 and the Flash platform. She claims she immediately notified them to Microsoft and Adobe. Adobe soon released a patch that blocks the weakness, however Microsoft Office Delayed for a week and so, in line with its policy in recent years, it has exposed the issue to the public in order to "protect users".
Google points out that the specific weakness it found is particularly problematic because it is already being abused. The vulnerability allows a skilled user to exploit the win32k.sys system file designed to communicate with the graphics card device to escape the virtual "sandbox" of Windows Which protects the user. Thus, it is theoretically possible to run malicious code through the browser. Google Itself has updated the source code of browser Chromium on which it was built Chrome To address the problem, but warned that other browsers are still exposed to it.
Microsoft referred to Google 's statement in response toContact from VentureBeat, And criticized its decision to expose the loophole to the public: "We believe in coordinated extradition of vulnerabilities to the public. Google's exposure exposes customers to potential risk. Windows It is the only platform that undertakes to investigate any risk Security Found and update the affected devices as quickly as possible. ”The company has advised users to use its Edge browser to stay safe.
Yesterday, Terry Meyerson, Microsoft vice president, Post In a company blog where he makes it clear that Microsoft is taking security threats seriously. Meirson noted that the reported weakness has recently been exploited by a Russian hacker group called STRONTIUM, which attacks government agencies, diplomatic institutions and military computers. He made it clear that users have updated the Windows 10 for its "update of the year" last August are immune to attacks, and that in about a week the company will release patch patches for all versions of the operating system.