As the saying goes, “All networked computers are vulnerable to attacks, but some networked computers are more vulnerable than others.”Although not the exact wording Animal farmHowever, this sentence does have many advantages. Of course, there are some viruses and problems with Linux distributions, but so far, most of the exploits are aimed at Windows, because more people use it every day than any other operating system.The latest Windows 10 vulnerabilities, discovered by [jonhat], Is also almost ridiculously simple, just plug in the mouse.
Although it is a bit gratifying that the attacker needs physical access to the device rather than simple network access, it is very worrying how easy it is otherwise. Obviously, plugging in a Razer mouse will automatically start Windows Update, which will install the driver for the mouse. The installation runs with administrator privileges, the user only needs to press Shift and right-click the mouse to open Power Shell.although [jonhat] At first they tried to let the company know that they didn’t respond until he publicized the exploit on Twitter, and it is now apparently working to solve the problem.
Others have confirmed This vulnerability is indeed effective, so I hope that a patch will be released soon to solve this problem. At the same time, we recommend that under normal circumstances, do not let strangers plug any devices into your personal computer, or plug any devices from unknown sources. Please also keep in mind that some attacks do not require physical or network access at all. For example, this kind of attack that remotely sniffs keystrokes from a wireless keyboard is not very secure, and this is also constructed by Microsoft by coincidence.