Skip to main content
  1. Home
  2. Computing
  3. News

Microsoft issues fix to address Windows USB vulnerability

By
usb-stick-flickr-molotalk
Image used with permission by copyright holder

If you’ve yet to update Windows in recent days, do so now – especially if you have a proclivity towards plugging in random USB drives on your computer, or if there’s someone else who uses your computer at home. A recently issued Windows update contains a patch that fixes a Windows vulnerability that allows your system to be exploited by malware introduced by thumb drives.

When compromised flash drives are plugged into a computer, the system can automatically execute malicious codes that could install viruses and keyloggers on your computer, giving attackers remote access to your sensitive files and data. Companies with huge networks of interconnected computers are the most at risk, as all it takes to be infected is one not-so-tech-savvy worker to use a USB stick of unknown origin. A notable example of a security breach caused by an infected thumb drive is the 2008 widespread virus infection at a U.S. military base in the Middle East. The malware that came from an unknown thumb drive plugged into a laptop went on to infect the base’s whole network, even its computers containing classified information. 

Recommended Videos

If you have automatic update enabled, you probably already have the patch. Otherwise, you can manually it via the Microsoft Update service. You can check out the details of the patch on the security bulletin issued along with its release

(Image credit: Vladim Molochnikov)

Editors’ Recommendations

Topics
Mariella Moon
Mariella Moon
Former Digital Trends Contributor
Mariella loves working on both helpful and awe-inspiring science and technology stories. When she's not at her desk writing…
Microsoft is finally making Copilot+ laptops useful for AI
Microsoft Surface Pro 11 front view in tablet mode.

Microsoft's Copilot+ PC initiative has been a smash hit, with many of them landing among the best laptops, but not for the AI hardware inside. Now, finally, Microsoft is putting the neural processing unit (NPU) inside Copilot+ PCs to good use. Starting today and going throughout the next two months, Microsoft will begin rolling out the 24H2 update for all Windows 11 PCs, and in the process, unlock several features for Copilot+ PCs, including the highly controversial Recall.

Recall is definitely the star of the show here, which will start showing up on Copilot+ laptops with a Snapdragon X chipset throughout October. Last week, Microsoft laid the groundwork for the release of Recall, detailing the security architecture of the feature and addressing some major criticisms of it. Now, for example, Recall is turned off instead of on by default. Microsoft is also allowing users to filter websites and giving users more control over their snapshots, including deleting them all.

Read more
Whatever you do, don’t install the Windows 11 September update
Windows 11 logo on a laptop.

Microsoft has warned users in a post on its support blog that the September KB5043145 update, released on Thursday, is causing some Windows 11 PCs to restart multiple times, show the blue screen of death, or even freeze.

The problems in the recent update affect those on the 22H2 or 23H3 version of Windows 11. However, Microsoft said it is investigating the issue and will provide more information when it's available. Microsoft confirmed: "After installing this update, some customers have reported that their device restarts multiple times or becomes unresponsive with blue or green screens. According to the reports, some devices automatically open the Automatic Repair tool after repeated restart attempts. In some cases, BitLocker recovery can also be triggered."

Read more
Microsoft outlines Recall security: ‘The user is always in control’
Recall promotional image.

Microsoft just released an update regarding the security and privacy protection in Recall. The blog post outlines the measures Microsoft is taking to prevent a data privacy disaster, including security architecture and technical controls. A lot of the features highlight that Recall is optional, and that's despite the fact that Microsoft recently confirmed that it cannot be uninstalled.

Microsoft's post is lengthy and covers just about every aspect of the security challenges that its new AI assistant has to face. One of the key design principles is that "the user is always in control." Users will be given the choice of whether they want to opt in and use Recall when setting up their new Copilot+ PC.

Read more