Latest news with #CVE-2025-29824
Yahoo
11-04-2025
- Yahoo
Windows PCs under threat from zero-day flaw used in ransomware attacks — update your computer right now
When you buy through links on our articles, Future and its syndication partners may earn a commission. Of the 134 Windows security flaws fixed by Microsoft in yesterday's Patch Tuesday updates, only one was a zero-day flaw that could be potentially exploited by hackers in order to gain system privileges. Today though, Microsoft has said that flaw (tracked as CVE-2025-29824) has indeed been used as a zero-day exploit in targeted ransomware attacks. Since it has now been patched, it is of critical importance that Windows users download and install this update immediately to protect their systems. Though the attacks were aimed at a small number of international targets including IT and real estate sectors in the United States, financial institutions in Venezuela, a software company in Spain and a retail sector in Saudi Arabia, any unpatched system is vulnerable. This zero-day flaw is a privilege escalation bug in the Windows Common Log File System that can be exploited in order to achieve SYSTEM privileges. The Hacker News explains that hackers value these types of exploits specifically because they can enable privileged access for widespread deployment and be used to infect vulnerable PCs with ransomware. The threat actors have leveraged a malware named PipeMagic in order to deliver both the exploits as well as ransomware payloads; this is the second Window's zero-day flaw to be delivered via this malware. The first one( tracked as CVE-2025-24983) was also a privilege escalation bug, but for the Win32 Kernel Subsystem. That vulnerability was flagged by ESET and patched by Microsoft last month. While it is currently unknown how the attacks are gaining initial access, it does seem as though the threat actors behind them have been using the certutil utility to download the malware from a compromised third-party site that is being used to stage payloads. Microsoft is tracking the activity and post compromise exploitation of this zero-day under the name Storm-2460. Patch Tuesday falls on the second Tuesday of every month, so set a calendar reminder so that you can remember to update your PC around that time. Outdated software is a great access point for hackers and threat actors, so don't leave yourself open to attacks by neglecting to install serious updates. Likewise, you can also remind yourself to set up automated updates and scans for your security software, since you should of course have one of the best antivirus programs installed on your PC too. Since Windows Defender is built-in to Windows, you can use it to periodically scan your system for malware or viruses too. And obviously, you want to practice safe browsing habits online. You can see if your antivirus security suite comes with a hardened browser or VPN feature for an added layer of security but whatever you do, never click on links, attachments or downloads from unexpected senders or unknown sources. Only download apps and software from trusted app stores and developers, and know how to recognize common phishing techniques. Zero-day flaws provide an easy way for hackers and other cybercriminals to gain a foothold for their attacks and this is why knowledge of them sells for such a high price. Unfortunately though, the only thing you can do to stay safe from attacks exploiting them is to install security updates as soon as they become available and to practice good cyber hygiene online. Scammers are impersonating QuickBooks in last-minute tax phishing scam — and it's stealing financial data Google just patched two critical Android zero-days exploited by hackers — update your phone right now T-Mobile is starting to send out data breach settlement payments for up to $25K — see if you qualify
Forbes
10-04-2025
- Forbes
Microsoft's Free Upgrade Offer For 500 Million Windows Users
You need to take this offer now There are now almost exactly six months until the end of Windows 10. Microsoft's most popular OS essentially retires on October 14, with critical security updates ending for all but those with extended, paid-for extensions. Microsoft has issued it's most alarming warning yet as the consequences and has confirmed its free upgrade offer. 'Don't wait until the last minute,' the Windows-maker has just warned the 750 million users sticking with Windows 10 for now at least. Microsoft has been clear with If your PC hardware is eligible for the free Windows 11 upgrade, then do that now. If it's not eligible, do not try to upgrade your PC — instead look at recycling or landfill. The pace of upgrades to Windows 11 has been accelerating in recent months, and that trend has continued into April. But the latest data shows more than half (53%) of users continue to persist with Windows 10. Rudimentary math suggests that's 750 million Windows 10 users, of which around 240 million do not have the hardware to upgrade. The other 500 million need to take that free Windows 11 upgrade offer. It's entirely possible that we will see a burst of Windows 11 upgrades in the weeks leading up to October 14, with users running Windows 10 until the last possible minute. Then we'll know how many are keeping going, ignoring the security risks, and how many have opted for the $30 (or more expensive enterprise) support extensions. The nightmare is those that stubbornly do nothing, running an unsupported OS. And the latest Windows zero-day confirmed in this week's Patch Tuesday should give you all the motivation you need not to be in that group. Predictably, CVE-2025-29824 has now made CISA's rogues' gallery of known exploited vulnerabilities, with a mandated (for federal employees at least) update deadline of April 29. Windows 10 Vs Windows 11 to April 2025 This is a 'use-after-free vulnerability that allows an authorized attacker to elevate privileges locally' and which Microsoft warns is being exploited in multiple countries around the world, including the U.S. Confusingly, Microsoft's advisory accompanying Patch Tuesday's updates seemed to suggest Windows 10 users were missing out on this critical fix. But that's only for those with outdated versions of the OS. As Windows Latest told me, 'Microsoft put out a confusing advisory that implied that the patch for CVE-2025-29824 isn't available for Windows 10. The advisory dashboard clearly states that 'The security update for Windows 10 for x64-based Systems and Windows 10 for 32-bit Systems are not immediately available… That only applies to Windows 10 LTSB 2015, and all supported and newer versions of Windows 10, including Pro Edition have been patched.' But it's not all good news. Windows Latest has discovered that Microsoft's latest Windows 10 update 'begins testing the removal of one basic feature from the operating system: clock with seconds in the Calendar… I don't think we'll go back to how things were originally because Windows 10 isn't the focus at Microsoft anymore, and it probably won't consider the feedback." More worryingly, Windows Latest also warns that 'it looks like KB5002700 is completely botched up because it not only breaks Outlook Calendar but also crashes Word and Excel when you try to create a new document or spreadsheet.' This only applies to Office 2016, but 'people on Windows 10 typically use it.' It might seem like nothing, but it's maybe a taste of things to come.
