UK markets closed
  • FTSE 100

    7,032.30
    -46.12 (-0.65%)
     
  • FTSE 250

    22,948.83
    -101.63 (-0.44%)
     
  • AIM

    1,251.11
    +3.84 (+0.31%)
     
  • GBP/EUR

    1.1707
    -0.0030 (-0.26%)
     
  • GBP/USD

    1.3906
    -0.0051 (-0.37%)
     
  • BTC-GBP

    30,112.58
    +1,252.99 (+4.34%)
     
  • CMC Crypto 200

    955.03
    +5.13 (+0.54%)
     
  • S&P 500

    4,395.26
    -23.89 (-0.54%)
     
  • DOW

    34,935.47
    -149.06 (-0.42%)
     
  • CRUDE OIL

    73.81
    +0.19 (+0.26%)
     
  • GOLD FUTURES

    1,812.50
    -18.70 (-1.02%)
     
  • NIKKEI 225

    27,283.59
    -498.83 (-1.80%)
     
  • HANG SENG

    25,961.03
    -354.29 (-1.35%)
     
  • DAX

    15,544.39
    -96.08 (-0.61%)
     
  • CAC 40

    6,612.76
    -21.01 (-0.32%)
     

Users must update PCs ‘as soon as possible’ as Windows left vulnerable to massive flaw, Microsoft says

  • Oops!
    Something went wrong.
    Please try again later.
·2-min read
  • Oops!
    Something went wrong.
    Please try again later.
Earlier this year the company said that it had found vulnerabilities in its Exchange Server tools, which is used to run email and calendars for many large companies (Getty)
Earlier this year the company said that it had found vulnerabilities in its Exchange Server tools, which is used to run email and calendars for many large companies (Getty)

Microsoft has announced an emergency update to Windows 10 in order to patch a serious vulnerability in the operating system.

The PrintNightmare flaw, also identified as CVE-2021-34527, affects all versions of Windows, and targets Windows Print Spooler service, a process that manages access to printers from multiple users. It was revealed after researchers at cybersecurity firm Sangfor accidentally published guidance for exploiting the flaw.

The researchers had tweeted in May that they had found the vulnerability, but accidentally made the proof-of-concept available online. Although they quickly deleted it, it was shared elsewhere including on Microsoft-owned GitHub.

Hackers could use the loophole to install programs, view and delete data, and create new user accounts with administrator access. Microsoft has had to issue patches for Windows Server, Windows 10, Windows 8.1, and even Windows 7.

“We recommend you update your devices as soon as possible. The update is available on all release channels including Windows Update, Microsoft Update Catalog and Windows Server Update Services (WSUS)”, Microsoft wrote in a post about the issue.

Microsoft has not yet introduced a patch for Windows 11, although preview builds are currently available for the company’s upcoming operating system. The company says the new OS will be more secure than Windows 11, but many could have to buy entirely new systems to run it.

This is the latest in a series of security concerns for Windows this year. In March, Microsoft said that it had found major vulnerabilities in its Exchange Server tools, which is used to run email and calendars for many large companies.

Less than two weeks later a problem with the Adobe Type Manager Library, which collects fonts together, caused by a particular font meant the operating system could be taken over by hackers.

The threat was low in Windows 10 because Microsoft had added protections in that version of the operating system, but the bug was classed as “critical" – the highest-possible level of alert

Read More

Phones that fold and flip can still be the future – if Samsung and Google show why Apple doesn’t have to do it first

Microsoft redesigns Word, PowerPoint, and Excel for Windows 11 with dark modes and ‘presence indicators’

Microsoft’s Xbox cloud streaming now lets gamers play on PCs and iPhones

Our goal is to create a safe and engaging place for users to connect over interests and passions. In order to improve our community experience, we are temporarily suspending article commenting