Microsoft fixed zero-day vulnerability six months ago, but the tech giant did a faulty job. Security researchers from Google’s Project Zero discovered that the fix wasn’t working and showed attackers could still use the zero-day.
Since zero-day exploits are a serious concern, companies quickly release a patch, at regular intervals. The June 2020 patch for Windows 8.1 and 10 was supposed to cover the zero-day CVE-2020-0986 vulnerability.
The vulnerability is still unpatched till now, and the cyber criminals already used the zero-day in at least one incident. A new fix is in the works and should be available with the January patch. Until then, many Windows machines will still be vulnerable.
To Read More: HFSecurity