window
Researchers have discovered a new method that hackers can use to exploit Windows devices. They say they have found a vulnerability in a PC’s operating system that could allow threat actors to downgrade it to an older version of Windows.
This means that if you are using Windows 11, you may be rolled back to Windows 10, which would expose many old vulnerabilities that could be used to take complete control of your system.
Microsoft told CyberGuy that it’s working on a fix, and claims that the vulnerability is still theoretical and that no one has yet attempted to exploit it. We’ll explain the details of this security flaw and give you some tips to protect your PC.
For security alerts and expert tips, sign up for KURT’s newsletter, The Cyberguy Report.
Anyone working on a Windows PC. (Kurt “Cyberguy” Knutson)
How hackers exploit Windows downgrades
SafeBreach researcher Alon Leviev said: Security flawsLeviev said he began researching downgrade attack techniques after noticing that a major hacking attack last year used malware called “BlackLotus UEFI Bootkit,” which downgrades Windows Boot Manager to an older, vulnerable version.
Leviev found a way to downgrade Windows, either the entire OS or just specific parts of it, and then used it to create a proof-of-concept attack that disables a Windows protection called Virtualization-Based Security (VBS) and targets highly privileged code that runs in the core part of the computer, known as the “kernel.”
What is Artificial Intelligence (AI)?
Typically, when a PC requests an update, it communicates with a secure Microsoft server that controls the update process. While Leviev couldn’t directly modify any files controlled by the server, he discovered that one key (“PoqexecCmdline”) was unlocked, allowing him to manipulate the update process.
Using this control, Leviev was able to downgrade critical Windows components, such as drivers, dynamic link libraries, and the NT kernel, to older versions with known vulnerabilities. He also found ways to downgrade important security features, such as the Windows Secure Kernel, Credential Guard, the hypervisor, and virtualization-based security (VBS).
More specifically, older versions of Windows have unpatched issues that hackers can exploit to steal data or take over your PC. These issues are fixed when you update to the latest software version. But if a hacker downgrades your PC to an older, vulnerable version, they can easily get into your system.
Windows software running on these laptops. (Kurt “Cyberguy” Knutson)
Best Power Strips and Surge Protectors of 2024
What is Microsoft doing about this issue?
Microsoft has acknowledged the security flaw and is actively working on a fix. In response to a query from CyberGuy, a company spokesperson provided the following statement:
“We appreciate the efforts of SafeBreach in identifying and responsibly reporting this vulnerability through coordinated vulnerability disclosure. We are actively developing mitigations to protect against these risks while following an extensive process that includes thorough investigation, development of updates across all affected versions, and compatibility testing to maximize customer protection while minimizing business disruption.”
The Redmond, Washington-based company said it is developing a security update to disable old, unpatched VBS system files to mitigate the threat. Blocking large numbers of files is complex and requires rigorous testing to avoid integration failures and regressions. The company added:
“We are not aware of any attempts to exploit the techniques outlined in this report and continue to monitor the threat landscape as it evolves.”
Click here to get FOX Business on the go
An HP laptop running Windows. (Kurt “Cyberguy” Knutson)
Windows flaw lets hackers break into your PC over Wi-Fi
Learn how to update your Windows software
Microsoft says hackers haven’t yet exploited the vulnerability, and even if they did, there’s little users can do to prevent it. Still, as a general cybersecurity measure, keep your operating system and other software up to date. Latest.
It’s one of the most effective ways to protect your devices from known vulnerabilities and security flaws. To update your Windows software and take advantage of the latest security patches, follow these simple steps:
For Windows 10 and Windows 11
- Click Start Menu Select “setting” (Or press the Windows key + I shortcut).
- In the Settings window, Updates and security
- In the Windows Update section, “Check for updates.”
- Update AvailableAll fixes, including patches for Wi-Fi driver vulnerabilities, will be downloaded and installed automatically by Windows.
- Once the installation is complete, Restart your computer Apply the update.
For Windows 8.1 and earlier versions
- open Control Panel Go to System and Security
- In the Windows Update section, “Check for updates.”
- If an update is available that contains a patch for the Wi-Fi driver vulnerability, they click “Install updates.”
- Follow On-screen instructions Complete the installation process.
- Restart your computer If you are prompted to apply updates.
How to remove your personal information from the internet
4 additional ways to protect your Windows PC
According to the report, even if the downgrade flaw goes undetected at all, hackers still need a way to remotely access your computer. Here’s how you can thwart them. Here are some steps you can take:
1. Install a powerful antivirus program. Hackers often gain access to your devices by sending infected emails or documents, or by tricking you into clicking links that download malware. You can avoid this by installing strong antivirus software that will detect potential threats before they can take over your devices and router. We’ve handpicked the winners of the best antivirus protection of 2024 for Windows, Mac, Android and iOS devices.
2. Be aware that urgent requests may be scams. Always be cautious if someone urgently asks you to transfer money, provide personal information or click on a link – it’s likely a scam.
3. Use strong, unique passwords: Create strong passwords for your accounts and devices, and avoid using the same password for multiple online accounts. Password Manager Securely store and generate complex passwords. It helps you create unique, hard-to-crack passwords that hackers can’t guess. It also tracks all your passwords in one place and enters them when you log into your accounts so you don’t have to remember them yourself. The fewer passwords you have to remember, the less likely you are to reuse them on your accounts. Learn more about me Check out the best password managers of 2024, reviewed by experts.
4. Enable two-factor authentication. Enable Two-factor authentication Whenever possible, they will require a second form of verification, such as a code sent to your mobile phone, in addition to your password, providing an extra layer of security.
How to remove your personal information from the internet
Important points about the cart
This latest Windows vulnerability is of major concern and exposes your PC to potential risks by allowing hackers to downgrade your system to an older, less secure version. Exploiting this flaw would allow an attacker to access the older vulnerability and take complete control of your machine. Microsoft is aware of the issue and is working on a fix, but the fact that this vulnerability exists is a reminder of how important it is to always keep your system up to date with updates and security measures. Be sure to keep an eye on your system security and pay attention as more details emerge.
Click here to get the FOX News app
Do you regularly check for and install updates to avoid such security threats? Cyberguy.com/Contact Us
If you want to hear more of my tech tips and security alerts, subscribe to the free CyberGuy Report newsletter at the link below. Cyberguy.com/Newsletter
Have a question for Kurt or tell us the story you’d like to see featured?.
Follow Kurt on his social channels:
Answers to the CyberGuy’s most frequently asked questions:
New Arrivals from Cart:
Copyright 2024 CyberGuy.com. All Rights Reserved.
