How to protect your Windows from win32k.sys security flaw

Ivan Jenic By: Ivan Jenic
2 minute read

As you probably know, Google revealed a vulnerability in the Windows kernel earlier this week. Just like it’s the case with most vulnerabilities, it allows attackers to bypass security measures, and potentially gain a full control of affected user’s system.

According to Google the vulnerability “can be triggered via the win32k.sys system call NtSetWindowLongPtr() for the index GWLP_ID on a window handle with GWL_STYLE set to WS_CHILD.” In other words, as we said, attackers can break into your system, by taking privileges for running their malicious software. This vulnerability is available in all versions of Windows.

Although Microsoft is aware of the problem, the company still hasn’t released a legitimate patch to address this vulnerability. As this moth’s Patch Tuesday is ahead of us, it is expected from Microsoft to release the patch during this occasion. But what until then?

How to protect your computer from win32k.sys security flaw

There are a couple of things you can do to keep yourself as secure as possible from this security flaw. Unlike Microsoft, Adobe recently updated Flash with the patch, so running the latest version of Flash will take the vulnerability away. As Adobe’s software is known for being a common target of security attacks, it’s not a surprise that the company acted quickly.

The same goes for the most popular browsers for Windows 10, Google Chrome and Microsoft Edge. These browsers already provide solutions to such threats, so just in case, make sure you’re using the latest versions.

Microsoft’s Terry Myerson also said that users with Windows Defender activated will also be safe from attacks:

Customers who have enabled Windows Defender Advanced Threat Protection (ATP) will detect STRONTIUM’s [that’s how Microsoft internally calls a hacker group who performs the attack] attempted attacks thanks to ATP’s generic behavior detection analytics and up-to-date threat intelligence”.

However, all these ‘solutions’ apply to Windows 10 only. If you’re running an older version of Windows, you’re pretty much exposed. The only thing you can do is to browse the internet with some of the security-oriented browsers, like Comodo IceDragon, or completely disable networking until Microsoft provides a patch.

Another solution that Microsoft suggests is upgrading to Windows 10. Nice try, but we don’t think it will be a clincher for core Windows 7 fans. However, they’ll eventually have to upgrade anyway, but that’s a story for another day.

RELATED STORIES YOU NEED TO CHECK OUT:

For various PC problems, we recommend this tool.

This software will repair common computer errors, protect you from file loss, malware, hardware failure and optimize your PC for maximum performance. Fix PC issues now in 3 easy steps:

  1. Download this PC Repair Tool rated "Excellent" on TrustPilot.com.
  2. Click “Start Scan” to find Windows issues that could be causing PC problems.
  3. Click “Repair All” to fix all issues with Patented Technologies (requires upgrade).

Discussions

Next up

Mozilla adds alerts about recently breached sites into Firefox browser

Giles Ensor avatar. By: Giles Ensor
3 minute read

Firefox has announced that it will start to warn users if they visit any breached sites. This is in an attempt to not only make […]

Continue Reading

More uncertainty for Microsoft’s Windows 10 October Update

Giles Ensor avatar. By: Giles Ensor
3 minute read

Oh dear. It’s been a pretty bad month for Microsoft concerning its Windows 10 October 1809 Update release. Microsoft eventually released the update a couple […]

Continue Reading

Confirmed: Microsoft now accepting ARM64 apps on its Store

Giles Ensor avatar. By: Giles Ensor
2 minute read

Yesterday, Microsoft released Visual Studio 15.9. With it came the announcement that “developers now have the officially supported SDK and tools for creating 64-bit ARM […]

Continue Reading