Microsoft patches Windows zero-day found in Hacking Team’s leaked docs

Microsoft today issued one of its sporadic emergency, or “out-of-band,” security updates to patch a vulnerability in Windows — including the yet-to-be-released Windows 10 — that was uncovered by researchers sifting through the massive cache of emails leaked after a breach of Italian surveillance vendor Hacking Team.

The Milan-based vendor sells surveillance software to governments and corporations, and markets zero-day vulnerabilities that its clients can use to silently infect targets with the firm’s software. Researchers have found several zero-days — flaws that were not fixed before they went public — in the gigabytes of pilfered documents and messages, including three in Adobe’s Flash Player, since July 5.

To read this article in full or to leave a comment, please click here