The August 2020 batch of security updates, patches, and vulnerability fix was released by Microsoft several days ago. Last week’s Patch Tuesday addresses the latest discovered total of 120 software vulnerabilities of Windows OS, which contained 17 critical severity and the remaining under important severity.
Basically – you can get hacked using the Windows OS if you:
- Watch a video – courtesy of the flaws from Windows Codecs and Microsoft Media Foundation
- Play audio – due to the bugs of Windows Media Audio Codecs
- Rewrite an HTML code – with the discovered MSHTML Engine vulnerability flaw
- Accept an Email – via another bug of Microsoft Outlook
- Open a PDF file – from the discovered Microsoft Edge PDF Reader loophole
- Surf the web – thanks to our old and slow friend, the Internet Explorer
Hence, we always advise you to regularly update whenever there are new patches available in Security and Update if you are using a Windows-based Operating System.
Two ongoing Microsoft Windows OS Zero-Day Vulnerabilities being exploited
The second vulnerability known as CVE-2020-1464 is also being exploited actively is a spoofing bug that happens when Windows validate file signatures incorrectly. The spoofing bug currently affects all versions of Windows OS and enables hackers to bypass the security intended when loading compromised signed files.
Whether you are using Windows OS for Home use or Server Administration. It is critical to apply the latest security updates to prevent malware, spyware, or ransomware from exploiting your system and prevent cyber attackers from gaining remote control over your system.