Blog
customer center

410.616.2000

rss Google Plus linkedin twitter facebook

Ready to Eliminate IT Stress?


computers

Next Level Technology Blog

Next Level Technology has been serving the Hunt Valley area since 1997, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

“The Worst” Windows Bug Discovered... and Thankfully Fixed

“The Worst” Windows Bug Discovered... and Thankfully Fixed

Microsoft has resolved what a security researcher tweeted was “the worst Windows remote code exec” in his memory. This vulnerability allowed a targeted file to implement remote code execution processes, manipulating the infected system and spreading the infection to other machines. In other word, it’s a bad problem to have. The scariest part: the attack would be triggered if a particular file were to be scanned by the Microsoft Malware Protection Engine.

This vulnerability was uncovered and reported by researchers Tavis Ormandy and Natalie Silvanovich, of the Google Project Zero team. Taking to Twitter, the duo reported that they had made a discovery, reporting it to Microsoft and the Microsoft Security Response Center.

The MSRC confirmed the presence of the vulnerability, discovering that numerous pieces of software within the Microsoft Malware Protection Engine would allow a “specially crafted file” to begin running any code the attacker pleased on the system. This vulnerability was present on essentially every Windows machine, having been found on Windows 7, 8.1, and 10, and even affecting Windows RT.

While Microsoft pushed out this particular update, this story still serves as a reminder to keep all of your solutions up-to-date. There is a digital arms race that is waged between programmers and hackers, where each side tries to gain the upper hand over the other by improving their programs. This is one of the main reasons why your solutions have regular updates released, and why it is so important to implement these updates in a timely manner. Without these updates, your system is left vulnerable to threats that have been made preventable.

Next Level Technology can help you to be sure that your company’s systems are updated. We’ll keep an eye out for any updates as well as warning signs of impending threats. For more information, give us a call at 410-616-2070.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Monday, 23 October 2017
If you'd like to register, please fill in the username, password and name fields.

Captcha Image

The Next Level Technology Way

  • Expert Team of IT Specialists
  • Best IT Tools - optimized
  • Support Process provides outstanding service

Mobile? Grab this Article!

Qr Code

Download Our Free Managed IT eBook

free whitepaper image

Learn 10 distinct benefits Maryland Small Businesses gain from taking a managed approach to their IT.

Proudly Serving These Areas

Anne Arundel County: Annapolis, Crofton, Edgewater, Glen Burnie, Highland Beach, Jessup, Linthicum, Odenton, Parole, Pasadena, Severn, Severna Park, and more

Baltimore County: Baltimore City, Catonsville, Cockeysville, Dundalk, Essex, Gwynn Oak, Hunt Valley, Owings Mills, Pikesville, Randallstown, Towson, White Marsh

Carroll County: Eldersburg, Finksburg, Hampstead, Marriottsville, Westminster, and more

Harford County: Bel Air, Edgewood, Havre de Grace, Joppa, and more

Howard County: Clarksville, Columbia, Elkridge, Ellicott City, Hanover, Laurel, Lisbon, and more