LIVE Watch Now
Breaking
CDC Nominee Erica Schwartz Pledges to Uphold Science During Senate HearingValve confirms iFixit can continue selling Steam Deck batteriesBlack Doctors Face Significant Disadvantage in NHS TrainingApple to Hike Prices for AppleCare Plus on Macs and iPadsCreator Reveals Cliffsider Twist and Future Plans for ‘Maximum Pleasure Guaranteed’Argentina face potential FIFA fine for Falklands bannerOnline Stores Offer Fast Shipping for Spain and Argentina World Cup JerseysDave Kendall, MTV’s 120 Minutes Host, Passes Away at 68Engineer uncovers every ’90s computer in Jurassic ParkJudge Blocks Trump-era Policy on Deporting ResearchersFCC to Lift National Ownership Cap on Broadcast StationsArgentina overcomes England to secure World Cup final spotAI firm sues man for using chatbot to generate child abuse imagesMessi leads Argentina to World Cup finalSheetz Migrates Stores from VMware to StorMagicUS House rejects bid to cut Israel aid despite strong Democratic oppositionR. Kelly Petitions Trump for Prison ReleaseUkraine’s Defence Minister Resigns as Part of Cabinet ChangesBad Bunny Seeks to Overturn Reggaeton Copyright RulingMessi’s Argentina Stuns England to Reach World Cup FinalCDC Nominee Erica Schwartz Pledges to Uphold Science During Senate HearingValve confirms iFixit can continue selling Steam Deck batteriesBlack Doctors Face Significant Disadvantage in NHS TrainingApple to Hike Prices for AppleCare Plus on Macs and iPadsCreator Reveals Cliffsider Twist and Future Plans for ‘Maximum Pleasure Guaranteed’Argentina face potential FIFA fine for Falklands bannerOnline Stores Offer Fast Shipping for Spain and Argentina World Cup JerseysDave Kendall, MTV’s 120 Minutes Host, Passes Away at 68Engineer uncovers every ’90s computer in Jurassic ParkJudge Blocks Trump-era Policy on Deporting ResearchersFCC to Lift National Ownership Cap on Broadcast StationsArgentina overcomes England to secure World Cup final spotAI firm sues man for using chatbot to generate child abuse imagesMessi leads Argentina to World Cup finalSheetz Migrates Stores from VMware to StorMagicUS House rejects bid to cut Israel aid despite strong Democratic oppositionR. Kelly Petitions Trump for Prison ReleaseUkraine’s Defence Minister Resigns as Part of Cabinet ChangesBad Bunny Seeks to Overturn Reggaeton Copyright RulingMessi’s Argentina Stuns England to Reach World Cup Final
◕ SundialUpdated recently
Trending Stories
Technology

Microsoft scrambles to patch Windows zero-day exploit

Microsoft scrambles to patch Windows zero-day exploit

Key Takeaways

  • A researcher published an exploit code for a critical vulnerability in the Windows User Profile Service.
  • The exploit, named HiveLegacy, allows low-privilege users to modify admin accounts' registry hives.
  • This comes just days after Microsoft released a record number of security patches.

Microsoft is facing another emergency as a researcher has published an exploit code for a zero-day vulnerability in the Windows User Profile Service, just hours after the company issued a record number of security updates. The exploit, named HiveLegacy, enables low-privilege users to modify registry hives associated with admin accounts, potentially compromising system integrity.

The researcher, known as NightmareEclypse, has published nine such exploits in recent months, including this latest one. In a statement, the researcher stated that the proof-of-concept code was stripped down to prevent malicious use but acknowledged its 'pretty powerful primitive' nature. According to multiple security experts, the exploit works effectively and is capable of elevating user privileges.

HiveLegacy targets a specific vulnerability in the Windows User Profile Service, which ensures the correct application opens when certain types of files are clicked on in Windows Explorer. By modifying these registry hives, attackers can gain unauthorized access to admin accounts, posing significant security risks for users and organizations relying on Microsoft’s operating system.

Microsoft has been forced into a rapid response mode, with company officials scrambling to develop and distribute a patch for the vulnerability. The incident highlights ongoing challenges in securing complex software ecosystems, especially when dealing with anonymous researchers who may not always follow traditional bug reporting procedures.

In recent years, Microsoft has faced criticism over its handling of security reports from independent researchers like NightmareEclypse. The researcher has complained about delays and lack of transparency in the company’s patching process, which has led to the publication of these exploits. Despite this, Microsoft maintains a strong commitment to regular updates and patches to address vulnerabilities.

The incident underscores the importance of continuous monitoring and rapid response mechanisms for security threats. As cyber-attacks become increasingly sophisticated, organizations must remain vigilant and proactive in their cybersecurity strategies. For now, users are advised to keep their systems updated with the latest patches from Microsoft.

The proof-of-concept code was stripped down to prevent attackers from using it maliciously.

NightmareEclypse, Anonymous researcher