No Surprise: Exposed XP Flaw Now Exploited -- Redmond Channel Partner

Barney's Blog

No Surprise: Exposed XP Flaw Now Exploited

On Monday I told you how Google publicly disclosed an XP Help flaw that had yet to be patched. As of then, there were no reported attacks, but I wondered aloud how long it would take to exploit this now well-known and understood hole.

It didn't take long -- Microsoft now says hackers are now going after the flaw which allows for remote code execution.

Some of you were on Google's side, arguing that Microsoft has no real motivation to fix a hole if no one knows about it. Others believe it is irresponsible to tell hackers how they attack our software. The latter group seems to have some pretty good evidence on their side.

What is your take? Let me know at [email protected].

Posted by Doug Barney on June 18, 2010

Featured

Microsoft Dismantles RedVDS Cybercrime Marketplace Linked to $40M in Phishing Fraud

In a coordinated action spanning the United States and the United Kingdom, Microsoft’s Digital Crimes Unit (DCU) and international law enforcement collaborators have taken down RedVDS, a subscription based cybercrime platform tied to an estimated $40 million in fraud losses in the U.S. since March 2025.
CrowdStrike's Acquisition of SGNL Aims to Strengthen Identity Security

CrowdStrike signs definitive agreement to purchase SGNL, an identity security specialist, in a deal valued at about $740 million.
Microsoft Acquires Osmos, Automating Data Engineering inside Fabric

In a strategic move to reduce time-consuming manual data preparation, Microsoft has acquired Seattle-based startup Osmos, specializing in agentic AI for data engineering.
Linux Foundation Unites Major Tech Firms to Launch Agentic AI Foundation

The Linux Foundation today announced the creation of a new collaborative initiative — the Agentic AI Foundation (AAIF) — bringing together major AI and cloud players such as Microsoft, OpenAI, Anthropic and other major tech companies.