Hackers can summon Cortana to break into Windows 10 PCs

科技动态 2018-06-13 阅读原文

Microsoft has issued a Windows 10 security update to prevent hackers from breaking into PCs using Cortana. Microsoft’s digital assistant is built into every version of Windows 10, McAfee security researchers discovered
it could be summoned from a lock screen to execute malicious software. Any potential hacker would need physical access to a PC, and McAfee details methods to get the digital assistant to index files from a USB drive and execute them.

These files could be executable ones, or Powershell scripts that can even go as far as resetting a Windows 10 account password. The clever attack preys on the ability of Cortana to listen for commands while a Windows 10 PC is locked, combined with the fact the operating system regularly indexes files to make them available in the search interface that Cortana accesses.

McAfee recommends turning off Cortana on the lock screen to prevent the attack, which is particularly relevant in business environments. While Microsoft has patched
this vulnerability with its latest security updates released yesterday, many machines won’t be running the latest updates just yet.

The Verge

责编内容by:The Verge阅读原文】。感谢您的支持!

您可能感兴趣的

绝密档案:美国当局如何追踪WannaCry背后的朝鲜黑客?... 美国当局对四年来的恶意软件样本、域名、电子邮件以及社交媒体账户进行了全面整理,旨在追查一名来自拉撒路集团的朝鲜黑客。 朴智孝( Park Jin Hyok ) 今年 9 月6日,美国司法部正式指控一名朝鲜程序员,称其...
Windows 10 Redstone 6 May Support Virtual Machines... One of the new features that may come to Windows 10 Redstone 6, and which wasn’t announced yet because it’s still in dev...
Adding Dynamic Updates to Windows 10 In-Place Upgr... For the past few months, there has been a community-wide push to determine the optimal approach for Offline Servicing Wi...
Off-The-Shelf Hacker: Creating Voice-Jaw Data with... Last week we looked at the Arduino-jaw servo side of Hedley, my talking robotic skull. Initially, his jaw moved in s...
Running Redis on Windows 10: Part 1 Ever since Jessica Deen explained how WSL works at my SVDevOps Meetup , I've recommended Windows 10 users run ...