Why You Should Update Your Computer ASAP
I think it’s important to install security updates as soon as possible. When you see that one of them has hit the update panel on your smartphone or computer, it is important to install and fix all the security issues recently discovered by the developers. However, if you have a PC, it’s especially important to install this security update, which contains about 100 fixes , including one for a hotly exploited vulnerability.
Microsoft’s latest update contains fixes for a whopping 97 security flaws, according to The Hacker News . Not all security vulnerabilities are the same, some are more serious than others: this update ranks seven vulnerabilities as “Critical” and the rest as “Important”. Of course, you can’t choose which fixes to install, but it’s good to know which of the flaws are the most serious.
This includes fixes for 45 remote code execution vulnerabilities, vulnerabilities that allow attackers to run any code they want on your computer, and 20 privilege escalation flaws that allow attackers to access system controls offered only to administrators. You can find the full number of vulnerabilities below:
- 45 remote code execution vulnerabilities
- 20 privilege escalation vulnerabilities
- 10 information disclosure vulnerabilities
- Nine Denial of Service Vulnerabilities
- Eight security features to bypass vulnerabilities
- Six spoofing vulnerabilities
However, one of these vulnerabilities is the most serious of all: CVE-2023-28252 . Microsoft has confirmed that this vulnerability is day zero and actively exploited, meaning that attackers have already taken advantage of it to attack Windows users. Microsoft states that “an attacker who successfully exploited this vulnerability could gain system privileges” which would essentially allow them to take control of your PC.
While we often don’t know who is actively exploiting certain security flaws, in this case we do. Cybersecurity firm Kaspersky has identified a group of cybercriminals who are using this exploit to carry out ransomware attacks on businesses in Asia, the Middle East and North America. Even the CISA (Cybersecurity and Infrastructure Security Agency) has ordered its agencies to fix this vulnerability by May 2nd.
How to install the latest security patch in Windows
To install this latest security update and resolve these 97 vulnerabilities, select Start > Settings > Windows Update (Windows 11) or Start > Settings > Update & Security > Update Windows” (Windows 10).