Microsoft on Tuesday released a major update for Windows 10 – Anniversary the Update , – in which a number of new features and capabilities. How do I find specialists, the update includes the “hole” in security, through which hackers can gain access to user data.
Windows 10 Anniversary Update contains a vulnerability, which was first discovered back in 1997. The bug allows hackers to know the name and password Microsoft account, which is used in Outlook products, Edge, Skype, Office 360 and OneDrive.
A dangerous gap in the operating system is in a network application layer protocol for remote access to files, printers, and other network resources, Server Message Block (SMB).
To obtain the necessary data, the attacker enough to add to a Web page image that is loaded from a network drive via SMB. Microsoft products are trying to download the network resource and send data to the server user account.
For the first time the problem was discovered back in the Windows 95 and Windows NT, but experts considered it insignificant and forgotten about it.
However, at the moment, given the widespread use of Microsoft account, the gap has become urgent. Experts advise users to use complex passwords and change passwords at any suspicion of a leak.