Win 10 security issue

Written by Mark Evans
15/12/2017

Tavis Ormandy‏, a researched with Google, has pointed out a security flaw with Windows 10 and the third party password manager that is installed by default.

Reporting on Twitter, Ormandy set up a Win 10 VM and found that with the Keeper password system “It didn't take long to find a critical vulnerability”. To demonstrate this he has set up a demo page https://bugs.chromium.org/p/project-zero/issues/detail?id=1481&desc=3

A Microsoft has said it has corrected the issue – and that as long as updates are current there should not be an issue. However it does raise some concerns over Microsoft’s pre-release security testing.