Microsoft users alert! Govt. warns against risk in Windows, Office, Bing and Outlook: How to protect your device
government body, the vulnerabilities have been identified across a range of Microsoft products, such as Microsoft Windows, Azure services, Microsoft Office, Bing, Microsoft Dynamics, System Center and Exchange Server. Among these, Microsoft Exchange Server, a tool integral to business collaboration, has been found vulnerable. The vulnerabilities discovered by CERT-In encompass a variety of potential exploits, including the ability for attackers to gain elevated privileges, obtain confidential information, bypass security measures, execute remote code attacks, initiate spoofing attacks, or cause denial of service disruptions.
Of particular concern are the vulnerabilities affecting Windows OS, with CERT-In identifying numerous affected versions, including various iterations of Windows 10 and Windows 11. These vulnerabilities could potentially allow unauthorized access to a user's device, enabling attackers to assume control or remotely steal sensitive information. According to CERT-In's findings, these vulnerabilities arise due to inadequacies in the protection mechanisms of the affected software.
Notably, the SmartScreen feature, designed to safeguard devices against malware, has been identified as inadvertently facilitating malware infiltration. This means that attackers could exploit these security gaps by sending specially crafted requests, potentially compromising the security of affected systems. To mitigate the risks posed by these vulnerabilities, CERT-In recommends that users ensure their devices are regularly updated with the latest patches and security updates.
Read more on livemint.com
