No, that headline isn’t a joke. Unfortunately, there’s a significant vulnerability that’s actively being exploited in the wild through Internet Explorer and Office, and Microsoft has released a patch to fix it. You need to update your PC to protect it as soon as possible.
Update to Fix This Zero-Day Exploit
We first reported on this issue last week, and now Microsoft has solved the zero-day exploit with a new Windows update.
The exploit used Office files containing malicious ActiveX controls that could grant a threat actor access by simply downloading a file. When the file is opened, it automatically launches a page on Internet Explorer that contains an ActiveX control. It then downloads malware onto the victim’s computer, which can be used for all sorts of things.
When the issue was first reported, we could only offer to be careful what you download. However, we can recommend updating your Windows PC to the latest version to fix this exploit.
As part of Microsoft’s Patch Tuesday, the company fixed a total of 66 security flaws, which is always welcomed. The first significant issue is mentioned above, but it also fixes two remote code execution vulnerabilities, the WLAN AutoConfig Service and Open Management Infrastructure.
Don’t Wait to Update!
If you’re using Windows, you need to download these updates to fix the critical security holes. Of course, you should still be careful when downloading files from unknown sources, but at least with this patch, you can rest easy knowing a gaping hole in your PC’s security has been closed.
RELATED: What Is Patch Tuesday for Windows, and When Is It?
- › How Bad Frame Pacing Can Make Games Feel Awful
- › Grab This Samsung 27-Inch Monitor for Just $129 on Sale
- › NextGen TV and ATSC 3.0 Is Not Going Well
- › ASUS’s New Compact Keyboard Keeps the Number Pad
- › Minecraft Trails & Tales Update Has New Mobs, Coming June 7
- › L1, L2, and L3 Cache: What’s the Difference?