Hackers exploit new Windows vulnerability to steal user credentials

forbes.com October 31, 2024, 04:01 PM UTC

A new security vulnerability in Windows has been discovered, allowing hackers to steal user credentials through malicious Windows Theme files. This follows a previous vulnerability that Microsoft had patched, but researchers found it did not cover all potential risks. The new vulnerability, identified as CVE-2024-38030, was uncovered while developing a patch for an earlier issue. Researchers at 0patch created a micropatch to protect users from this latest threat, which affects even the newest Windows 11 version. Microsoft is aware of the issue and plans to address it, but an official patch is not yet available. In the meantime, users can access the 0patch micropatch for free to protect their systems.


With a significance score of 4.8, this news ranks in the top 3% of today's 14035 analyzed articles.

Get summaries of news with significance over 5.5 (usually ~10 stories per week). Read by 8000 minimalists.