A vulnerability of the Windows operating system has been discovered recently by Microsoft. The critical flaw can potentially allow hackers to have full access and control over a Windows user's computer. The software company has released a patch to address this.
The flaw is branded as a critical vulnerability, which, left unattended, can really harm computers and users' privacy rights. The company stated that "an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights."
The threat can get into a computer disguised as Open Type font files, created by Adobe and Microsoft. In a security information post regarding the vulnerability, the Redmond-based software company said, "There are multiple ways an attacker could exploit this vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage that contains embedded OpenType fonts. The update addresses the vulnerability by correcting how the Windows Adobe Type Manager Library handles OpenType fonts."
The vulnerability can affect Windows 7, Windows 8, Windows 8.1, Windows RT, and Windows Vista users, according to ABC News. The vulnerability can also have a computer infected, if a user opens documents which are already infected. The patch can be downloaded if the user does not have automatic updates.
The ruse has been discovered after leaked data from the Hacking Team hack incident made their way to public sites, and were then investigated by researchers from Google's Project Zero and Fire Eye.
Last month, the Italian surveillance organization, notorious for selling offensive spyware, hacking, and tracking services to governments and regimes, has fallen victim to a massive hack. This caused 400 GB's worth of data, email exchanges, source codes, transactions, and client lists, among others, to be dumped in public websites. An inside job is being looked into as a probable cause.
