How to Protect Yourself From the New Windows 10 and 11 Security Bug
A new security vulnerability has been discovered in the latest versions of Windows that hackers could use to remotely install programs, steal data and passwords, and even lock users out of their PCs. Microsoft says that all versions of Windows newer than Windows 10 version 1809 are affected—including the Windows 11 beta.
According to Microsoft’s bug report, the vulnerability stems from “overly permissive Access Control Lists (ACLs) on multiple system files, including the Security Accounts Manager (SAM) database.” The bug has not been successfully exploited, but Microsoft’s report cautions that such an attack is “likely” given how severe the vulnerability is. In order to execute an attack, the attacker would need direct access to a person’s computer—either physically, or by tricking them into downloading malware-laden files. Once a hacker has access, they can give themselves full administrator controls and “install programs; view, change, or delete data; or create new accounts with full user rights.”
There can be a short lived workaround that restricts entry to the weak system information in your PC. This will hold hackers out however will make it tougher to get well information utilizing the System Restore characteristic—therefore why it gained’t work as a long-term answer. Nonetheless, it’s price contemplating if you need to absolutely defend your self from doable safety breaches.
G/O Media could get a fee
First, you need to restrict access to the “%windir%system32config” system folder.
- Use the taskbar to search for “PowerShell.” (Note: You can also perform these steps in Command Prompt.)
- Right-click “Windows PowerShell” from the results and click “Run as an administrator.”
- In PowerShell, type the following command: icacls %windir%system32config*.* /inheritance:e
- Press “Enter.”
Next, you need to delete your System Restore points. Make sure to do this after you restrict access to %windir%system32config.
- Right-click “My PC” from the Windows File Explorer and select “Properties.”
- Click “System Protection” from the left-hand menu.
- Click to highlight your local hard drive in the “Available drives” list, then click “Configure.”
- Click “Delete,” then “Continue” to confirm.