Microsoft released an emergency patch today to patch a critical vulnerability in its Windows operating system. The bug affects Windows version as far back as Windows 95. The bug, called WinShock, allowed hackers to remotely execute code on a machine to control it remotely. The attack exploited both the Windows operating system and the Internet Explorer browser.
IBM researchers first discovered the bug in May this year and worked with Microsoft to patch it before announcing it to the public. IBM said that the bug had been “hiding in plain sight,” which means we’ll never know if hackers were already exploiting the bug.
The update is rated extremely critical so update your system now. To do so, look for Windows Update and check for updates. You can find Windows Update in the Control Panel or by typing “Windows Update” in the Start Menu search bar.
This 19-year-old bug proves that software vulnerabilities can exist for a long time without anyone noticing. Take the Heartbleed bug for example, which left a majority of the world’s websites vulnerable.
For more on security breaches, check out our 7 scariest cyber security breaches of 2014.
Source: BBC
Related Stories
Windows update fixes critical vulnerabilities in almost all versions of the OS
‘Masque Attack’ security flaw lets hackers replace your iOS apps with malicious ones
Computer security should be simple
New iPhone malware spreads when connecting to a Mac
Follow me on Twitter: @lewisleong
