Security News > 2017 > December > Project Zero Chains Bugs for ‘aPAColypse Now’ Attack on Windows 10

Project Zero Chains Bugs for ‘aPAColypse Now’ Attack on Windows 10

2017-12-19 16:00

Google’s Project Zero team dubs a new WPAD-related attack as an “aPAColypse Now” that allows a local attacker to compromise a targeted and fully patched Windows 10 PC.

News URL

http://threatpost.com/project-zero-chains-bugs-for-apacolypse-now-attack-on-windows-10/129193/

#attack #windows #windows10

Related news

Microsoft says it broke some Windows 10 patching – as it fixes flaws under attack (source)
Windows Update downgrade attack "unpatches" fully-updated systems (source)
“Perfect” Windows downgrade attack turns fixed vulnerabilities into zero-days (source)
Windows Downgrade Attack Risks Exposing Patched Systems to Old Vulnerabilities (source)
Windows 10 KB5041580 update released with 14 fixes, security updates (source)
PEAKLIGHT Downloader Deployed in Attacks Targeting Windows with Malicious Movie Downloads (source)
New Windows 10 22H2 beta fixes memory leaks and crashes (source)
Windows 10 KB5041582 update released with 5 changes and fixes (source)
Novel attack on Windows spotted in phishing campaign run from and targeting China (source)
Windows 10 KB5043064 update released with 6 fixes, security updates (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.