Partager:

JAKARTA - Microsoft has released a new patch to patch a Windows vulnerability that is being actively exploited by hackers. If you have a system running Windows 7 and later, you'll want to update your computer as soon as possible.

The security flaw, called Follina (CVE-2022-30190) by the researchers, allows malicious actors to hijack users' computers through programs such as Microsoft Word. Security researchers, as reported by The Verge, have been aware of the threat since late May. However, Microsoft reportedly rejected their initial findings.

In an attack documented by security firm Proofpoint, hackers linked to the Chinese government sent malicious Word documents to recipients in Tibet. When opened, this document uses the Follina exploit to control the Microsoft Support Diagnostic Tool (MSDT).

These viruses are created to execute commands that can be used to install programs, create new user accounts, and access, delete, or modify data stored on the computer. The exploit has also been used in phishing campaigns targeting government agencies in America and Europe.

Microsoft's original warning about this threat offered a workaround to protect against the threat, but this update (KB5014699 for Windows 10 and KB5014697 for Windows 11) should eliminate the need for it.

"Microsoft strongly recommends that customers install the update to be fully protected against the vulnerability," Microsoft said in its Blog post. “Customers whose systems are configured to receive automatic updates need not take further action.”


The English, Chinese, Japanese, Arabic, and French versions are automatically generated by the AI. So there may still be inaccuracies in translating, please always see Indonesian as our main language. (system supported by DigitalSiber.id)