Google Says Upgrade to Windows 10 After Critical Flaws Found in Chrome and Windows 7

[MULTIZ321]

Google Says to Upgrade to Windows 10 After Critical Flaws Found in Chrome and Windows 7
By Davey Winder/ Cybersecurity/ Forbes/ forbes.com

"Earlier this week Google released an update for the Chrome web browser that it urged users to ensure was implemented immediately. That was because the Threat Analysis Group at Google had uncovered a critical zero-day vulnerability that was already being exploited in the wild. Now a Google security engineer, Clement Lecigne, has warned that another zero-day vulnerability that is also being exploited, impacting Windows 7 users, was being used together with the Chrome exploit to take over Windows systems. Google is now urging all Windows 7 users to upgrade to Windows 10, as well as make sure their Chrome browser is up to date, to escape the attention of the combined threat.

The Windows zero-day is a local privilege escalation in the win32k.sys kernel driver that allows it to escape the security sandbox. The vulnerability can be used to elevate system privileges by an attacker who might then be able to execute remote malicious code. "The vulnerability is a NULL pointer dereference in win32k!MNGetpItemFromIndex when NtUserMNDragOver() system call is called under specific circumstances" Clement Lecigne said, adding "we strongly believe this vulnerability may only be exploitable on Windows 7 due to recent exploit mitigations added in newer versions of Windows. To date, we have only observed active exploitation against Windows 7 32-bit systems."....."

Getty


Richard

 

[T-Dot-Traveller]

I really know nothing on this topic -
BUT
It sounds a lot like a TS salesman telling you need to “upgrade”

because:
1) points are better than fixed weeks
2) your points are the wrong kind (you need CWA/ Wyndham -Hawaii Collection - Diamond etc)
3) You need to do xx so your heirs aren’t stuck .
4) yada-yada -yada

******
Thanks Richard
Have. computer on windows 7 / will need to find out .

 

[zinger1457]

I really know nothing on this topic -
BUT
It sounds a lot like a TS salesman telling you need to “upgrade”

A TS salesman benefits from your upgrade/purchase, not sure how Google benefits from you upgrading from Windows 7 to 10.

 

[T-Dot-Traveller]

A TS salesman benefits from your upgrade/purchase, not sure how Google benefits from you upgrading from Windows 7 to 10.

I have always believed that these tech companies , including Facebook
always put the consumers interests ahead of their own financial goals .
LOL

To quote / paraphrase the Mel Gibson character in the movie - Conspiracy Theory
“just because your paranoid -doesn’t mean someone isn’t trying to get you”

I accept that there probably is a security issue - I am just not sure if the promotion of the issue is totally altruistic .

We likely all have a “vaccination blind spot “that makes us question the goals of the powerful interests .
This is one for me .

 

[davidvel]

I have always believed that these tech companies , including Facebook
always put the consumers interests ahead of their own financial goals .
LOL

To quote / paraphrase the Mel Gibson character in the movie - Conspiracy Theory
“just because your paranoid -doesn’t mean someone isn’t trying to get you”

I accept that there probably is a security issue - I am just not sure if the promotion of the issue is totally altruistic .

We likely all have a “vaccination blind spot “that makes us question the goals of the powerful interests .
This is one for me .

I think zinger's point was that Google doesn't own Microsoft and doesn't sell windows.

 

[T-Dot-Traveller]

I think zinger's point was that Google doesn't own Microsoft and doesn't sell windows.

I think the word is : collusion

quite a popular word these days .

Helping another entity for your benefit .
I am sure tech companies never do this .
LOL

*****
As I said - I do have windows 7 on a computer - so I will
have to further check .

 

[davidvel]

I think the word is : collusion

quite a popular word these days .

Helping another entity for your benefit .
I am sure tech companies never do this .
LOL

*****
As I said - I do have windows 7 on a computer - so I will
have to further check .

Companies likely do, but that has nothing to do with this. Unless you believe that Google security engineer, Clement Lecigne and all the other computer scientists that have analyzed the threat and agree with him are in a big Conspiracy to help Microsoft.

 

[T-Dot-Traveller]

Companies likely do,......a big Conspiracy .....

and my answer is Facebook .

*****
Hey David - I am having fun with conspiracy theory paranoia

and I am also sure Clement isn’t issuing a warning for no reason ,
and I appreciate Richard / MULTIZ321 - bringing it to my attention via a TUG lounge thread .

 

[davidvel]

Edit, wrong thread.

 

[bogey21]

I gave up on Microsoft about a year ago. Too many security updates to decide whether to install or not install; too much upselling; etc. Switched to a Chromebook. Don't need an anti-virus program. Works like a charm. Love it...

George

 

[Talent312]

... Switched to a Chromebook.

But now you're in bed w-Google, who per this thread, is in bed w-MS.
So, you've come full circle and now, by osmosis, back in with MS.
.
.

 

[bogey21]

But now you're in bed w-Google, who per this thread, is in bed w-MS.
So, you've come full circle and now, by osmosis, back in with MS.

I'll be the first to admit I don't understand all this stuff. The way I read the article is that the issue is somehow between Chrome and Windows7. If it just a Chrome issue, the daily updates that Google does on my Chromebook may take care of it. But in truth I don't have a clue...

George