This week, 450 million Windows users were reminded to update their PCs to stay safe. Yet another vulnerability has shown us the importance of keeping our operating systems updated. So to make sure you’re protected, please make sure your Windows updates are installed and up to date right now.

A report from ESET revealed a new Windows vulnerability combined with a browser flaw to attack PCs. Both issues are now fixed, but users need to update their systems. Your PC is currently supported, but you may not be protected from these threats in the future, if you fail to keep Windows up to date. Another grim reminder to prepare for the Windows 10 end-of-life in the upcoming months.

The Time to Update to Windows 11 is Fast Approaching

There are 850 million Windows 10 users and 50 million on older versions. About 450 million can upgrade to Windows 11. The rest need to act before Windows 10 support ends next October.

Microsoft offers a $30 deal to extend Windows 10 support for a year. There are also ways to upgrade to Windows 11 without the required hardware, or you can buy a new PC in 2025. Whichever you choose, make sure to act soon to stay protected. Microsoft’s updates are crucial for the security of your business.

A Recent Hack Exploited a Flaw in Windows 10

ESET found that the Windows flaw (CVE-2024-49039) allows hackers to run code on your PC. This was combined with a browser flaw (CVE-2024-9680) affecting Firefox, Thunderbird, and Tor Browser. Together, they let hackers install a backdoor called RomCom on your PC.

RomCom is a Russian cyber group targeting businesses and government entities. They use malicious websites to exploit these flaws and install backdoors, affecting unsuspecting visitors. This attack largely targeted European and American users.

ESET praised Mozilla for quickly fixing the browser flaw in 25 hours. Microsoft also patched the Windows flaw in their latest update.

Microsoft’s reminders to update your system are crucial. Ignoring them could lead to a successful hack, which is much worse. So if you’re reading this and CSi Networks does not currently cover patch management for your company – please make sure your Windows operating system is updated to the latest version.

If you are unsure about your systems and need help keeping them up to date to avoid these vulnerabilities – please contact us now and we will make sure you and your business systems are safe.