Ten days after reporting it to Microsoft the presence of a critical flaw in Windows 10, Google has publicly disclosed information about it. In a blog post, Google is justified : Microsoft had not published neither alert nor patch for this critical flaw which is already the subject of operations on the Internet. “This vulnerability is especially serious because we know that it is being actively exploited” write the experts of Google.
on The side of Redmond, it annoys the method. “We believe in disclosure coordinated vulnerability, and the disclosure today by Google could potentially put customers at risk. The decision by Google is disappointing “, stated the american giant.
the Problem, as stated by Google, the flaw is currently being exploited, and not a little. Microsoft, living a schizophrenic on the issue, is obliged to recognize it. And it is not an operation trivial, since Russian hackers behind the operation are specifically designed political institutions american. Meeting within the group of Strontium, these hackers are also known under the names “Fancy Bear” and APT 28, the latter is suspected of having hacked the convention of the us democratic party and in particular the email from John Podesta, the chairman of the campaign team of Hillary Clinton.
through A vulnerability disclosed by Microsoft, Strontium-go, this time to government agencies or diplomatic institutions and military. Something to feed the theses of attacks of State put forward by the leadership of the american intelligence, accusations described as “hogwash” by Moscow.
Microsoft stresses, however, that the attack scenario described by Google, is completely thwarted by the deployment last week of an update of Adobe Flash. “In addition, our analysis indicates that this specific attack has never been effective on Windows 10 Anniversary Update because of the security improvements previously implemented.”, adds the editor.
The editor Windows has said since that it would broadcast next week a security patch for this vulnerability for Windows. And this on the occasion of the Patch Tuesday for the month of November, in the framework of its usual cycle.
No comments:
Post a Comment