Microsoft’s Cortana can be used to hack PCs, say researchers

Cortana might be super helpful at keeping track of your shopping lists, but it turns out it's not so great at keeping your PC secure. Researchers from McAfee have discovered that by activating Cortana on a locked Windows 10machine, you can trick it into opening up a contextual menu which can then be used for code execution. This could deploy malicious software, or even reset a Windows account password.

The vulnerability stems from Cortana's ability to listen for commands even while the PC is locked, combined with regular indexing that makes files accessible in the search function that Cortana uses. Even though potential hackers would need physical access to your PC to do any damage, this could feasibly take place in an office or shared environment. Microsoft dealt with the issue in yesterday's "Patch Tuesday" update, but many machines won't have that yet, so McAfee suggests turning off Cortana on the lock screen to prevent any attacks.

Rubaitul Azad

I’m a professional Web , UI , UX IA & Ixd Developer . I love design since i was a small kid. I learned how to program by working on lots of different website projects starting from a pretty young age. So i decide to make my love to my job. I always recommend for people to simply get stuck in and enjoy what they’re doing, and don’t worry too much about the certificates.

Leave a Reply

Your email address will not be published. Required fields are marked *