The shortcoming has been hidden for quite some time, but Microsoft has finally managed to slam it down.
Although many people prefer to trust the security of their PC to a third-party antivirus, Microsoft also has its own solution to this, in the form of Microsoft Defender, which used to be called Windows Defender. Not so long ago, the program also got a little better, as they dealt with a security flaw that occurred back in 2009, but it wasn’t until late last year that SentinelOne researchers came across it.
The vulnerability, known as CVE-2021-24092, could allow an attacker to exploit Microsoft Defender’s ability to replace deleted dangerous files with simple placeholder files, and because the system does not scan them individually, it could be easily tampered with. In addition, it is even more worrying that the vulnerability was already present in Windows 7, so it could not only cause problems with Windows 10.
Fortunately, Microsoft has in the meantime taken action on the case and fixed the bug, and even appears to have been abused earlier. But unfortunately, now that the exploit has come to light, it’s in the deck that users using older systems and not patching will be targeted by hackers in the near future.
Source: PC World Online Hírek by pcworld.hu.
*The article has been translated based on the content of PC World Online Hírek by pcworld.hu. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!
*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.
*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will be edited or deleted at the request of the author. Thanks very much! Best regards!