American multinational technology giant- Microsoft rebukes a group of hackers that is linked to the attacks on the Democratic National Committee which had exploited vulnerability in all Windows PCs and would not be able to fully repair this for another week.
The flaw was disclosed to the public on Monday by Google, giving a sharp rebuke from Microsoft about the dangers of uncovering the flaws like this before fixes are available.
Microsoft said the software flaw had been used by a group called Strontium, which is known more widely as Fancy Bear. The vulnerability exposed let the hackers slip into computers through web browsing software, eventually installing “back doors” through which they can enter as they please.
In the threat report, Microsoft described Strontium as having the markings of being backed by a nation state, but did not conclude which one.
“Google’s decision to uncover these vulnerabilities before patches are broadly available and tested is disappointing, and puts customers at increased risk,” Myerson said.
“This vulnerability is particularly serious because we know it is being actively exploited,” threat analysis group, Google, Neel Mehta and Billy Leonard said, reports AFP.
Google said that it told Microsoft and Adobe about the vulnerabilities and an update to Flash addressing the weakness was released five days later.
Microsoft said people using the Edge browser on fully updated Windows 10 operating systems should be protected from the attack.
“We have coordinated with Google and Adobe to investigate this malicious campaign and to create a patch for down-level versions of Windows,” Myerson said.
A Microsoft threat report described Strontium as a group that usually targets government agencies, diplomatic institutions and military organizations, as well as affiliated private sector organizations such as defense contractors and public policy research institutes.
Checkout Latest IT news at itvoir.com
Sameeksha Bhardwaj, From ITvoir News Desk