Categories: Data BreachHacks

New Windows 10 Update System vulnerable to Hack with Critical security Flow

The most recent adaptation of the Microsoft OS has gotten to be at the end of the day a point of examination, and this time it might convey terrible news for your organization’s security.

As the cybersecurity Expert Sami Laiho uncovered on his blog, each Windows 10 redesign represents a genuine hazard. Specifically, while your framework redesigns, anybody can take control of your corporate PCs.

This is a major issue and it has been there for quite a while,” clarifies Laiho. This genuine defect becomes possibly the most important factor when the OS restarts in the wake of introducing another redesign.

Once the framework is being redesigned, all you have to do to pick up control of it is to push Shift-F10 to get to the summon Gain access with administrator level Privilege .

In light of this, the perils that your organization appearances are multifaceted. In reality, any worker can take control of their PC as manager, get to secret reports, or get to the corporate system and make a difficult issue from inside the organization itself.

Laiho brings up that it is not important to utilize a particular programming to complete this cyberattack. Simply that guiltless blend of keys is sufficient to sow tumult.

As though that wasn’t sufficient, the danger is not restricted to the individuals who have physical access to the PC: “An outside risk having admittance to a PC sits tight for it to begin a move up to get into the framework,” clarifies Laiho.

Microsoft is evidently attempting to settle this genuine defect. Then, the most vital thing to forestall dangers is to depend on a satisfactory security arrangement, and not to put off Windows 10’s dull redesigns.

Disregard to what extent the upgrade takes. In a perfect world you would approve it quickly and remain with the PC at all circumstances.

This is the best way to make certain that no spectators take the driver’s seat of your PC. It is clearly imperative to disclose this to representatives.

Meanwhile, we’ll need to trust that they won’t lay hold of the framework themselves and sit tight for Microsoft to determine this basic weakness.

Why would a bad guy do this:

  1. An internal threat who wants to get admin access just has to wait for the next upgrade or convince it’s OK for him to be an insider
  2. An external threat having access to a computer waits for it to start an upgrade to get into the system

How to prevent:

  • Don’t allow unattended upgrades
  • Keep very tight watch on the Insiders
  • Stick to LTSB version of Windows 10 for now
Balaji

BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.

Recent Posts

Zero-Trust Policy Bypass Enables Exploitation of Vulnerabilities and Manipulation of NHI Secrets

A new project has exposed a critical attack vector that exploits protocol vulnerabilities to disrupt…

2 days ago

Threat Actor Sells Burger King Backup System RCE Vulnerability for $4,000

A threat actor known as #LongNight has reportedly put up for sale remote code execution…

2 days ago

Chinese Nexus Hackers Exploit Ivanti Endpoint Manager Mobile Vulnerability

Ivanti disclosed two critical vulnerabilities, identified as CVE-2025-4427 and CVE-2025-4428, affecting Ivanti Endpoint Manager Mobile…

2 days ago

Hackers Target macOS Users with Fake Ledger Apps to Deploy Malware

Hackers are increasingly targeting macOS users with malicious clones of Ledger Live, the popular application…

2 days ago

EU Targets Stark Industries in Cyberattack Sanctions Crackdown

The European Union has escalated its response to Russia’s ongoing campaign of hybrid threats, announcing…

2 days ago

Venice.ai’s Unrestricted Access Sparks Concerns Over AI-Driven Cyber Threats

Venice.ai has rapidly emerged as a disruptive force in the AI landscape, positioning itself as…

2 days ago