PandaLabs, Panda Security’s anti-malware laboratory, is warning of the danger of a recently discovered Microsoft 0-day vulnerability, allowing unauthorized execution of a file through desktop shortcut icons. “This is not strictly speaking a vulnerability” –explains Luis Corrons, Technical Director of PandaLabs– “rather an old function for which security wasn't fully considered during development. This affects all versions of Windows, even those for which maintenance has been discontinued by Microsoft.”
As it is impossible to develop patches for all operating systems, given the amount of work this would involve, and as exploits are now in circulation, Microsoft has released a small application as a workaround, until the definitive patch is developed. By applying it however, some shortcut icons may be lost.
Quick Launch bar after applying the patch
Until now, there have been some proof-of-concepts that used this function. “We have even seen it used to access critical infrastructure systems (SCADA), and it's just a question of time until hackers exploit it. And when this happens, we could witness an old-style epidemic, with millions of users infected”, says Corrons.
As such we advise “all Windows users to download and install the application, to ensure they are properly protected. We would also urge users to bear in mind the usual security advice that we offer, such as having a good antivirus installed and up-to-date (preferably with a cloud connection, to ensure a fast response to new malware), and updating and patching other software on the computer, etc”.
More information at www.pandalabs.com
About PandaLabs
Since 1990, PandaLabs’ mission has been to detect and eliminate new threats as rapidly as possible to offer our clients maximum security. To do so, PandaLabs has an innovative automated system that analyzes and classifies thousands of new samples a day and returns automatic verdicts (malware or goodware). This system is the basis of collective intelligence, Panda Security’s new security model which can even detect malware that has evaded other security solutions.
Currently, 99.4% of malware detected by PandaLabs is analyzed through this system of collective intelligence. This is complemented through the work of several teams, each specialized in a specific type of malware (viruses, worms, Trojans, spyware, phishing, spam, etc), who work 24/7 to provide global coverage. This translates into more secure, simpler and more resource-friendly solutions for clients.
Image:
Fotos Digitales Gratis
www.fotosdigitalesgratis.com
All logos, product and service names mentioned are the trademarks of their respective companies.
Antivirus Free Online
Technology Security Internet Information
www.antivirusfreeonline.net
