Cyberattacks aiming at Windows OS are some of the most common threats in the current landscape. The rate of detection of such threats has increased drastically. Windows users are targeted, almost on a daily basis, with some new malware, vulnerability, or attack vector.
Cyberattacks on Windows
In this month alone, multiple attacks have been observed on Windows-based machines. Some of the attacks are completely new and use simple and unique ways for infection.
- A new type of NTLM relay attack was discovered, which allows attackers to control domain controllers that eventually take control of the entire Windows domain. This attack is named as PetitPotam.
- Scammers are taking advantage of the buzz created for the new release of Windows 11. They are spreading fake installers laden with malware, adware, and other malicious tools.
- Microsoft warned its customers about a cryptomining malware, LemonDuck, targeting Windows and Linux systems. It propagates via exploits, USB devices, phishing emails, and brute-forcing.
- Last month, a suspected Pakistani group was found targeting government and energy firms in South/Central Asia. The attackers deployed ReverseRat on compromised Windows systems.
Recent bugs in Windows
A month ago, the National Cyber Security Center (NCSC) warned about a dangerous flaw (CVE-2021-1675) in Windows. This flaw exposed several firms to large-scale attacks.
- A privilege elevation bug dubbed SeriousSAM has been discovered in Windows 10 that enables attackers to access data. Further, the bug can be abused to create new accounts on systems that can be used for malicious actions.
- Microsoft asked Windows users to install the latest updates after a cybersecurity firm inadvertently posted a detailed guide on how to exploit flaws in Print Spooler service.
Conclusion
Windows OS is one of the most used software in the entire world that makes it an obvious target for a large number of cybercriminals. It is plagued with several vulnerabilities and countless malware developed specifically to target it. Therefore, the best solution is to always stay updated and frequently install the latest patches.
Publisher
/https://cyware-ent.s3.amazonaws.com/image_bank/3a6b_shutterstock_1149046760.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_469770821.jpg)
