Researchers Find That Cortana Can Be Used To Hack Windows 10 PCs

Researchers Find That Cortana Can Be Used To Hack Windows 10 PCs

Researchers Find That Cortana Can Be Used To Hack Windows 10 PCs

However, McAfee experts were also able to summon the window that houses Cortana on the desktop interface simply by typing with any key while Cortana is listening to a query.

Windows 10 users will likely be concerned to hear that Cortana had major vulnerabilities, which allowed a malicious party to potentially bypass the lock screen - or easily view sensitive information from it - although the good news is that Microsoft has just patched these issues.

The June security patch also resolves a privilege escalation vulnerability which affects the Cortana voice assistant.

Hackers could exploit the vulnerability to gain access to a locked computer.

This was possible because of the almost-constant indexing performed by Cortana in the background of Windows 10.

A demo from McAfee researcher Cedric Cochin demonstrated a password reset using this technique and a USB through which he executed a PS1 payload.

To solve this problem, Microsoft has developed a security patch that fixes this and other vulnerabilities detected by different cybersecurity firms.

Even if you haven't installed the latest patch, you can protect your computer by manually disabling the voice assistant from the computer's lock screen.

Montreal to co-host 2026 World Cup
This will mark the first time the United States will host the World Cup Finals since 1994. In the end, Morocco received 65 votes, while the triple host bid received 134 in total.

This could leave a vast number of users still vulnerable to the attack worldwide.

McAfee said in a written statement.

Considering Windows 10 was designed specifically to let you run apps across a range of devices including PCs, tablets, phones and even the Xbox One, it's still not entirely clear what the death of Windows 10 Mobile means for the future of the operating system.

A pair of independent Israeli security researchers unearthed a flaw back in March which could be used to infect a computer with a virus.

It is created to help users accomplish various tasks, although it also seems to suffer from a bug that could allow hackers to actually use Cortana to hack the Windows 10 PC that it is installed on.

The malicious network adapter can then intercept the web sessions to send the device to a malicious website, where malware can be downloaded to the machine.

The final critical flaw for enterprises to prioritize was CVE-2018-8267, a scripting engine memory corruption vulnerability in Internet Explorer.

Recommended News

  • President Trump: I won't sign the moderate immigration bill

    President Trump: I won't sign the moderate immigration bill

    Mario Diaz-Balart, a moderate Republican from Florida, told reporters that he was confident Trump would sign the legislation . The House is set to vote on the compromise and Goodlatte bills next week.
    Tesla cuts 9 percent of workforce in bid to post profit

    Tesla cuts 9 percent of workforce in bid to post profit

    Investors slammed the stock, bringing its price down to $244.59 while increasing Tesla's short position to all-time highs. When we look at the Volatility of the company, Week Volatility is at 4.93% whereas Month Volatility is at 3.54%.
    FALLEN KINGDOM Premiere With Steven Spielberg

    FALLEN KINGDOM Premiere With Steven Spielberg

    It's been four years since theme park and luxury resort Jurassic World was destroyed by dinosaurs out of containment. Isla Nublar's long-dormant volcano has awoken and is spewing lava, threatening another mass extinction.
  • Aston Martin reveals limited-run Rapide AMR

    Aston Martin reveals limited-run Rapide AMR

    Extra aerodynamic bodywork includes a carbon-fibre splitter, sills, rear diffuser and boot-lid-lip spoiler. So when Aston Martin Racing turns its attention to the company's Rapide luxury sedan, people listen.
    Kellogg Recalls Honey Smacks Cereal on Salmonella Concerns

    Kellogg Recalls Honey Smacks Cereal on Salmonella Concerns

    The CDC said epidemiologic evidence indicates that Kellogg's Honey Smacks cereal is a likely source of this multi-state outbreak. Recalled boxes have a universal product code (UPC) of 38000 39103 (15.3 oz packets) and 38000 14810 (23 oz packets).

    Pakistan Taliban leader Mullah Fazlullah reportedly killed in United States drone strike

    In 2012 TTP tried to assassinate Nobel laureate Malala Yousafzai , then an 11-year-old who promoted girls' right to education. On Friday night, Major General Asif Ghafoor, Pakistani military spokesman tweeted: "President of Afghanistan Mr.
  • Deputy killed, another wounded in shooting in Kansas City

    Deputy killed, another wounded in shooting in Kansas City

    Major Kelli Bailiff, of the Wyandotte County Sheriff's Office, said it was possible the deputies were shot with their own weapons. She said she was not sure whether the suspect was shot by one of the deputies or someone else who responded to the incident.
    Win probability: 2018 U.S. Open

    Win probability: 2018 U.S. Open

    Meanwhile, the Australians out in the morning groups are heading towards a missed cut with all of them over par on their rounds. But at this juncture there are few scenarios that don't end with DJ hoisting the hardware for the second time on Father's Day.
    McDonald’s to switch to paper straws in U.K., Ireland

    McDonald’s to switch to paper straws in U.K., Ireland

    Plastic straws are the sixth most common type of litter globally, according to Litterati, an app that identifies and maps trash. And in Malaysia, McDonald's will try a new approach to dispensing straws - giving them out only if a customer requests one.
  • Video Assistant Referee system used for first time in France vs Australia

    Video Assistant Referee system used for first time in France vs Australia

    It's the ideal start for France , whose ambition is to finish at the top of a group that also includes Peru and Denmark. Mile Jedinak stepped up to sen France goalkeeper and captain Huge Lloris the wrong way to level the scoring at 1-1.
    China vows to retaliate to Donald Trump's tariffs on $50bn of goods

    China vows to retaliate to Donald Trump's tariffs on $50bn of goods

    Chinese officials have said they would drop agreements reached last month to buy more US soybeans, natural gas and other products. Renewed worries about an escalating trade conflict sent shares in Chinese telecoms gear maker ZTE Corp tumbling on Friday.
    The 5 key takeaways from the Justice Department IG report

    The 5 key takeaways from the Justice Department IG report

    Aitan Goelman , Strzok's lawyer, said the report found no evidence that his political views had an impact on the Clinton probe. The inspector general criticized anti-Trump text messages they exchanged, concluding they had "cast a cloud" over the bureau.

We are pleased to provide this opportunity to share information, experiences and observations about what's in the news.
Some of the comments may be reprinted elsewhere in the site or in the newspaper.
Thank you for taking the time to offer your thoughts.