New CVE-2024-30078 Security Vulnerability
This vulnerability is unlikely to be exploited but is very dangerous. It is highly recommended to update your computer by running your Windows updates.
The vulnerability is a driver issue that has existed for several years. If you are still using Microsoft Windows 7, 8, or 8.1, no patch will be made for these devices. However, for any units currently supported by Microsoft, a patch has already been made and was released yesterday 6/18/2024 during Update Tuesday. This includes Operating Systems installed on servers, towers, and laptops.
Exploits are executable programs indicated by (name).exe. Anti-virus (Black List) programs won’t be able to stop this type of attack. However, if you are one of my clients with White Cloud Security (WCS) installed, an .exe vulnerability will not be allowed to run due to the nature and principles employed by WCS, a white listing system.
The vulnerability especially affects those who use their computer at coffee shops, restaurants, or any public Wi-Fi. It makes no difference if you are using free Wi-Fi, your personal hotspot, or a VPN. Hackers who know how to exploit this flaw don’t need your authentication for the exploit to execute. It is a very dangerous threat and needs to be patched right away.
For those of you who have your computer set up by Hard Drive, your updates are postponed to avoid becoming a Microsoft guinea pig. Your update will run by Saturday, but you should manually run your updates as soon as possible to avoid any issues with a potential attack.
If you have questions or concerns, please call us at Hard Drive. According to the company that discovered it, this vulnerability has never been accessed. Now that it is known to exist, hackers are aware of it and will use this exploit as soon as they learn how it works. Don’t take any chances.