Author Topic: Kaspersky warns new Zero-day vulnerability is being actively exploited  (Read 102 times)

Online javajolt

  • Administrator
  • Hero Member
  • *****
  • Posts: 35126
  • Gender: Male
  • I Do Windows
    • windows10newsinfo.com
A zero-day vulnerability, as well as four similar security holes which could potentially allow cybercriminals full access to your system, was found in the win32k.sys system file during a recent malware investigation by Kaspersky.  Windows versions 7,8.1, and 10, along with the associated server editions, can be targeted.

The vulnerability potentiated an unidentified APT criminal group to exploit these vulnerabilities in order to gain privileges to install a Windows PowerShell backdoor, which would allow cybercriminals to operate without a trace and gain complete control of the infected device.

Kaspersky has since released a patch update, so as long as your system’s up to date, you’ll be protected; but perhaps at the expense of your convenience.  Users have since complained of their systems becoming significantly slower, which can be attributed to the additional antivirus programs installed.

Whilst you don’t want a painfully slow device, you also don’t want security compromised one.  Kaspersky has recommended the following security measures in order to ensure the most efficient protection against the installation of backdoors due to zero-day vulnerabilities:

• Install the Microsoft-provided update to close the vulnerability

• Update your operating system software regularly

• Use behavior-based detection solutions which can detect unknown threats.

source