Earlier today we reported that Google had publicly disclosed a vulnerability in Windows that Microsoft wasn’t too thrilled about. This is because the disclosure was made in 10 days since Google informed Microsoft about it, and usually the accepted window is 30 days, so it is understandable that Microsoft was miffed about it.That being said, the good news is that Microsoft’s patch for the exploit will be coming soon. In a post on its website, Microsoft announced that the patch to fix the disclosed exploit will be publicly available on the 8th of November, which is next Tuesday. Until then Microsoft suggests that users using Microsoft Edge and who are on the Windows 10 Anniversary Update are safe from these exploits.
According to Microsoft, “We believe responsible technology industry participation puts the customer first, and requires coordinated vulnerability disclosure. Google’s decision to disclose these vulnerabilities before patches are broadly available and tested is disappointing, and puts customers at increased risk.”
The company has also noted that a group by the name of Strontium has already taken advantage of these exploits to conduct a “low-volume” phishing campaign, which is why they weren’t happy about Google publishing their findings so early. In the meantime Adobe has reportedly patched the problem on their side which has mitigated potential attacks.
Filed in . Read more about Google, Hack, Microsoft, Security and Windows.