Serious security flaws on Windows 10 allow anyone to log in by voice

On Windows 10, there is a new bug called Open Sesame (open), taking advantage of this error, hackers can use their own voice to execute code at any time on the computer.

According to the researchers, this error stems from Microsoft's Cortana virtual assistant, and anyone can have the right to connect to malicious websites, download and run multiple infected files, access files Sensitive information, . even if the computer is locked.

Specifically, the Windows 10 UI (user interface) can still run the application in the background, so even if it uses lock and keyboard, Cortana's computer can still perform many different tasks.

Serious security flaws on Windows 10 allow anyone to log in by voice Picture 1

The bug was discovered by security researcher Amichai Shulman, a member of Tal Be'ery of Kzen Networks, and two other colleagues, Ron Marcovich and Yuval Ron, currently working at the Israeli Institute of Technology.

Open Sesame errors appear on newer versions of Windows 10 Fall Creators Update (1709), April 2018 Update (1803) and newer.

Microsoft has received a report of the bug in April and evaluated Open Sesame as an important security bug. Currently the Open Sesame bug has been fixed in the June security update, to ensure system safety, Microsoft advises users to keep up to date with the latest patches.

See more:

1. Artistic Endeavors, master theme from Microsoft, invite download and experience
2. Microsoft suddenly released an update for Windows 10 Mobile Phone application
3. Shadow, the service that allows Windows 10 to be used on any device
4. Microsoft launched a video reminding Windows 7 "death" and advised users to upgrade to Windows 10