Microsoft has just released a bunch of security updates for Windows users along with an emergency patch to prevent malicious code exploitation on all affected systems running Internet Explorer versions 9 through 11.
Windows 7, Windows 8.1 and Windows 10 users have been warned about the possible malware infection due to an inherent bug in Microsoft’s in-built security software, the Windows Defender.
It is learnt that the inherent bug could be exploited using malicious code to trigger denial-of-service (DoS) attack on the app server and thereby leading to a high-level security breach on the affected systems.
Microsoft has cautioned all Windows users to install the emergency security patch on top priority as it will be easily accessible through the Automatic Windows Update feature starting Tuesday, 24 September.
Failing to install the security update could stealthily compromise your system through browser hijacking or email phishing techniques.
“An attacker who successfully exploited the vulnerability could take control of an affected system,” said Microsoft in its recent press release.
Recent survey data on security breaches are suggesting that more than 7 percent of all Windows users are still using the affected versions of Internet Explorer 9, 10 and 11.
Unlike the usual patch-rollout that happens every second Tuesday of the month, the emergency security patches are made available on a weekly basis to prevent active exploitation for known vulnerabilities in Windows.
Microsoft has further clarified that no further action is required by Windows users to remediate the bug in Windows Defender, apart from installing the recommended security patch.
We have personally verified that the 24 September security update has a bug-fix update for Windows Defender alongside some security patches for Microsoft .NET framework as well as some Windows System files. We recommend installing these files to stay protected from the latest online threats including the DoS attacks.