Emergency patch for Windows zero-day bug. With this issue, a system could theoretically be hijacked just by receiving an email, no need to even open it. Yikes! Fortunately, there haven't yet been any known attacks that take advantage of this exploit and Microsoft has patched it within days of finding out.

http://www.zdnet.com/article/microsoft-releases-emergency-patch-for-crazy-bad-windows-zero-day-bug/
Microsoft releases emergency patch for 'crazy bad' Windows zero-day bug | ZDNetThe vulnerability has been dubbed the worst Windows remote code execution flaw in recent memory.
6
7 Comments
LVL 22

Comment

by:Dustin Saunders
Agh!  That's a pretty bad one.
1
LVL 7

Author Comment

by:Brian Matis
Yeah. Looks like it took advantage of a flaw in the Malware Protection Engine. Hats off to Microsoft for the speedy turnaround and to the Google Project Zero team for discovering and reporting the issue!
1
LVL 115

Comment

by:John
I have already updated.

Also, I see a lot about this in Q&A. People do not understand they need top notch spam filtering so they do not even get this stuff.

I only get legitimate emails. The rest go to the big black hole.
0
LVL 7

Author Comment

by:Brian Matis
@John - what spam filtering do you use?
0
LVL 115

Comment

by:John
I use Mail.com and forward it to my main account. Top notch filtering
1
LVL 7

Author Comment

by:Brian Matis
Gotcha. Thanks for the info, John!
0
LVL 147

Comment

by:Andrew Hancock (VMware vExpert PRO / EE Fellow/British Beekeeper)
I think Remote Code execution via SMBv1 thanks to NSA is worse!

Juts need to leave a PC on and connected!
0

Keep in touch with Experts Exchange

Tech news and trends delivered to your inbox every month