A flaw revealed by Google is being exploited by hackers linked to Russia's government, Microsoft warns. A fix is due next week.
Microsoft said Tuesday it will release a patch next week for a Windows vulnerability, he said, it is exploited by hackers linked to the government of Russia.
The company said in a blog published on November 8 as part of its normal patch cycle, adding that a known group of hackers was already using the recently discovered flaw in a campaign of hacking sending false emails in an attempt to Tell them personal information. The error, which was publicly released by Google on Monday, can be used to avoid security system Windows32K.
The revelation of the error caused some friction between Microsoft and Google. The search giant said that gave Microsoft 10 days to issue an opinion or a settlement, but Microsoft has not acted. Google was published after him because it evaluated the error as "critical" and learned that was actively exploited. Microsoft has not set the delay in the release of a patch, but Google questioned the threat assessment error, adding that the publication of Google "could put customers at potential risk."
Microsoft said that a group of hackers known as Strontium was behind the email attack that took advantage of the failure. The group, known as "Fancy Bear" and APT 28, has also been linked to a series of hacks this summer, including one in which transcripts email and chat were stolen from the computer network of the Democratic National Committee.
