Barney's Blog

Blog archive

Hacker Shortcut Blocked

A new exploit, the so-called shortcut flaw, is closed as of today -- so long as you download the patch.

Here what this flaw is all about: Hackers use the Windows Shell to distribute nasty code that exploits Windows desktop shortcuts. The biggest problem? One need not to click the shortcut for the malicious code to activate.

Microsoft only releases out-of-band, or non-Patch Tuesday patches in the direst of circumstances, so I'm guessing this is a pretty big deal, especially as Microsoft deems the flaw as ‘critical.' Microsoft noted that it also affects XP SP2, but these users won't be getting a patch; Microsoft ended patch support for XP SP2 on July 13.

Posted by Doug Barney on August 02, 2010


Featured

  • An Easy Way To Build AI Agents and More Microsoft 365 Copilot Updates

    Microsoft on Monday unveiled its Microsoft 365 Copilot roadmap, describing the ability to create autonomous AI agents, a brand-new AI collaboration interface and a slew of app-specific AI features.

  • Microsoft Appoints Ex-GE Exec Its First COO Since 2016

    Microsoft has a new chief operating officer (COO), its first since Kevin Turner left the role -- and the company -- in 2016.

  • Image of a futuristic maze

    The 2024 Microsoft Product Roadmap

    Everything Microsoft partners and IT pros need to know about major Microsoft product milestones this year.

  • Microsoft, Oracle Announce Updates to Joint Database IaaS Service

    The Oracle Database@Azure infrastructure-as-a-service offering from Oracle and Microsoft is getting new capabilities, including integrations with key Microsoft data and security services.