(Agency N+1/Hans Garden) Sami Laiho is a white hat —a hacker’s ethics, which demonstrates failures of computer security to not be hacked maliciously by other pirates—, belonging to the world elite of instructors in the Windows infrastructure. He just posted on his blog a security flaw recently discovered in the Microsoft operating system and exposes your computer or laptop to someone else to be administrator of the computer (if you have an account with Windows 10).
Normally, to prevent any unauthorized user can modify the schedule for Windows 10, the operating system includes a program as a last line of defense, BitLocker, active most of the time. However, Laiho discovered that a recent update of Windows 10 leaves open a small slit that allows you to overcome this protection.
error. When Windows 10 updated, let’s say, the version of factory, with which some devices come, to version 1067 (update of November or the updated Anniversary), for example, will initiate a download bulk of files and then restart the computer. Precisely at the time of the restart of the computer is already updated, when you press the keys Shift + F10, you can access the control of Windows on the hard drive and change the drive C: where the files are located in programs. At this point, Bitlocker does not work.
Laiho points out in his blog that the real problem here is "elevation of privilege which leads to a non-administrator to SYSTEM (root of Windows), even on machines protected by BitLocker (the encryption of the hard disk of Microsoft). And of course, this does not require any external hardware or additional software. It is just a bug crazy I would say :(".
why is it a danger? In the case of a person who wants to get administrator access to our computer, you only have to wait until the next update of the operating system to do so. While an external threat —say, a hacker who has access to our computer— you can also expect to start an update to enter the system. The problem becomes more complex in large enterprises, where many computers that share common access to system and databases, are updated, and restarted many times simultaneously.
By the time, Microsoft —which has already been informed about the error— has not released a solution. For this reason, it is recommended not to leave unattended computers when they are updated. Or, in any case, to delay temporarily the updates of Windows 10 and continue with the version LTSB operating system, you will not receive feature updates, offers companies a greater control over the update process and it is the most simplified edition of Windows 10 available.
No comments:
Post a Comment