A new security flaw in Microsoft Windows allows hackers to steal users’ login credentials: Researchers

Seattle: Computer security researchers said they have uncovered a new variation on an old weakness in Microsoft’s Windows operating system that could theoretically allow hackers to steal login credentials from hundreds of millions of PCs.

The vulnerability, named ‘Redirect to SMB’ by security firm Cylance, is similar to one found in the late 1990s that took advantage of a weakness in Windows and Microsoft’s Internet Explorer browser which made it possible for attackers to trick Windows into signing on to a server controlled by hackers.

According to Cylance, if a hacker can get a Windows user to click on a bad link in an email or on a website, it can essentially hijack communications and steal sensitive information once the user’s computer has logged on to the controlled sever…

h/t Marvin

  • I’m not clicking. Can’t fool me.

  • PapayaSF

    Get a Mac.

  • Minicapt

    … and it was personally devised and inserted by Bill Gates.