Microsoft launched an emergency security update to fix two errors that might expose Windows users to hackers, as flaws in Windows 10 could allow fraudsters over the Internet to take control of a Windows 10 computer by sending one booby-trapped image.
According to the British website thesun, Microsoft announced that it had issued a security vulnerability fix in a short post recently, while the American company said, “An attacker who successfully exploited this vulnerability can obtain information for further penetration of the user’s system.” Microsoft has been reporting errors by Abed Aziz Hariri, Trend Micro security researcher.
According to the report, the vulnerabilities affect the Microsoft Windows Codecs Library, which deals with multimedia content such as image and video files, and Microsoft said that hackers could exploit vulnerabilities by sending a “specially made” image file to the victim.
And where the target must open the image file, which could have been sent as an email attachment or downloaded after clicking on an elusive website, and once a person’s computer has been accessed, the image file can allow the hacker to collect information such as usernames and passwords, or even control PC.
There is no evidence to suggest that any hackers used the exploit before repairing it, and bug fixes were offered to Windows 10 customers this week as part of the Windows Codecs Library update, and Microsoft said: “Customers don’t need to take any action to receive the update.”
However, the fix will not be received by anyone who has turned off automatic updates, and it is possible to manually check whether you have the latest version of Windows 10 or not, as the safe versions are 1.0.31822.0 and 1.0.31823.0 and later.
To avoid the trap of scammers online, it is always a good idea to use a strong password, and avoid using the same password for multiple accounts. Experts also recommend that web users adhere to trusted sites and avoid opening email attachments from senders they don’t know.