You can see but you can't... - A bizarre Windows-10 bug causing BSOD

This is possibly as bizarre as it can get on the topic of operating system bugs. The said vulnerability as detailed in The Verge and Bleeping Computer at length, causes a Blue Screen of Death (BSOD) if the user extracts a Zip file or folder or even while executing a Windows shortcut if the attacker has crafted a small piece of code within. Ultimately, all that a Windows-10 user (privilege account NOT required) needs to do is extract the ZIP file or simply look at a folder that contains a malicious shortcut and it will automatically trigger hard drive corruption.

As per @WDormann this bug seems to have been brought about from Windows-10 build 1803 and later, and therefore, earlier versions do not appear to be susceptible to this issue.

When @JonasLyk initially notified this, it was said to have no indication of being able to anything more than BSOD however, its real capabilities can only be ascertained by #Microsoft That said, the clear and present danger from this bug is the possibility of a DoS attack by crashing as many systems as possible.

While Microsoft works on closing this zero day, users will have to continue to follow basic Cyber hygiene while downloading files or accepting file transfers from anyone.

#CISO #Cybersecurity #vulnerability #risk #threat #zeroday #CERT #CyberHygiene