Google finds zero-day security bug in Windows 7

Posted on Friday, March 08 2019 @ 18:34 CET by Thomas De Maesschalck
MSFT logo
Google announces it discovered a zero-day security vulnerability in Windows 7 that is actively exploited by cybercriminals. This escalation of privilege exploit is linked to the win32k.sys kernel and according to Google, it doesn't work on newer versions of Windows. Furthermore, it seems the 64-bit version of Windows 7 is also protected.
Microsoft has been informed of the vulnerability - which is actively being exploited according to Google - and the company is working on making mitigations available, however none have been rolled out to Windows 7 users yet. Till such a time as they are available, Google recommends users update their OS to Windows 10 in order to inoculate against the exploit.
Users are recommended to upgrade to Windows 10. As you may know, extended support for Windows 7 ends on January 14, 2020 so if you're still running Windows 7 it's definitely time to upgrade.

Via: Neowin

About the Author

Thomas De Maesschalck

Thomas has been messing with computer since early childhood and firmly believes the Internet is the best thing since sliced bread. Enjoys playing with new tech, is fascinated by science, and passionate about financial markets. When not behind a computer, he can be found with running shoes on or lifting heavy weights in the weight room.

Loading Comments