Earlier this month, every version of Windows was subject to a zero-day attack due to a failed attempt to fix a vulnerability. However, it seems that after this incident, millions of Windows users once again faced great danger.
A new zero-day attack followed Microsoft’s attempt to fix it. The vulnerability covers a vulnerability Microsoft thought it successfully patched in November (CVE-2021-41379) and allows a hacker to infiltrate your computer and exploit privileges that allow it to hijack your device and spread its attacks to the victim’s network. The new cyberattack also includes the latest versions of Windows, including Windows 11, Windows 10, and Windows Server 2022.
“We will do whatever it takes to ensure the safety and protection of our customers”
“Talos has already identified instances of malware attempting to exploit this vulnerability,” said Jaeson Schultz, Technical Leader of Cisco’s Talos Security Intelligence and Research Group. too much evidence. ” he added.
Speaking to BleepingComputer, Microsoft confirmed the new vulnerability, saying, “We are aware of the disclosure and will do whatever it takes to ensure the safety and protection of our customers.”
The real problem is that there isn’t much you can do about this situation. Any attempt to directly repair the binary will corrupt the Windows installer; so the most logical thing to do is wait and see how Microsoft will handle the repair (or, as we’ve seen, won’t).
21867
