Microsoft has found 132 security flaws in the Windows operating system. Of these, 37 can be used to launch remote cyberattacks and 9 are very dangerous. Microsoft has released an emergency security patch for Windows due to the fear of cyber attacks exploiting these flaws.
Hackers from Russia’s Romcom Group exploited 6 of the 132 vulnerabilities before the security patch was released. It also contains a zero-day security flaw that can be exploited to control the Windows Error Reporting Service by adding spoofed code to the ‘mHTML’ method.
However, a flaw named RCE was not fixed in the new security patch. As a result, it has not been possible to completely eliminate the threat of cyber attacks on devices running Windows operating system, the company said.
It may be noted that, zero day security flaws are basically software vulnerabilities. Various organizations release security patches to quickly resolve errors in their own software. But if hackers can exploit the flaw before the patch is released, it’s called a zero-day security flaw.