Hackers exploit new Windows vulnerability to steal user credentials
A new security vulnerability in Windows has been discovered, allowing hackers to steal user credentials through malicious Windows Theme files. This follows a previous vulnerability that Microsoft had patched, but researchers found it did not cover all potential risks.
The new vulnerability, identified as CVE-2024-38030, was uncovered while developing a patch for an earlier issue. Researchers at 0patch created a micropatch to protect users from this latest threat, which affects even the newest Windows 11 version.
Microsoft is aware of the issue and plans to address it, but an official patch is not yet available. In the meantime, users can access the 0patch micropatch for free to protect their systems.