Microsoft is urging users to download their latest security patch as soon as possible, stopping a serious vulnerability impacting Windows users around the world.
Known as PrintNightmare, this vulnerability takes advantage of Print Spooler, a service that allows multiple users to access a single printer. After its circulation, Microsoft revealed that this service could be used to install programs, manage data, and create entire accounts for PCs with admin privileges, unlocking a treasure trove of data for those affected. Discovered and shared by researchers online for educational purposes, the research around PrintNightmare was quickly pulled when the group realized the major cybersecurity threat - but not before others had saved, shared, and began using the attack online.
Even after announcing that they would no longer support their legacy operating system, Microsoft released a patch for Windows 7 that patches the issue for users that haven't yet upgraded to Windows 10. There is currently no patch available for users testing the beta version of Windows 11, due for a global release later this year.
This is another addition to a growing list of cybersecurity threats targeting businesses of all sizes throughout 2021. Over July 4th weekend, Russian hacking group REvil targeted Kaseya VSA, IT management software used by MSPs around the world to manage client devices and distribute software updates.
If you're machine runs on Windows OS, it's important to restart your computer and install the latest updates available to your machine to ensure that you're completely covered with the latest security enhancements. For SeedSpark clients, our team proactively issued a patch to mitigate the threat while Microsoft worked on a larger, more comprehensive patch to distribute on a system level. Our team is always monitoring the technology landscape to identify and address the latest threats targeting our clients before they hit.