Skip to main content
  1. Home
  2. Computing
  3. News

HiveNightmare is a nasty new Windows bug. Here’s how to protect yourself

Dua Rashid
By

A new bug called ‘HiveNightmare’ reportedly lets anyone with local or remote access to your PC take it over. This is a fairly new and serious flaw in the latest versions of Windows 10, as well as in Windows 11, which is still being tested in the Windows Insiders program.

Using malware, the hacker can gain complete access to your PC without needing an administrative password. The bug originates from an alleged change in the recent versions of Windows 10 and 11 that grants unauthorized users the privilege to access the Security Account Manager (SAM). The SAM is a database that contains both usernames and passwords for local accounts on the operating system.

Unauthorized users can access a backed-up version of the SAM in a shadow copy that Windows systems create. A shadow copy is a backup, hidden on the main drive, of a Windows system’s most important files. Your system creates a shadow copy each time it installs a system update or upgrade. So, malware that gets onto a PC via a dodgy-looking email, phishing software, or a malicious web link would be able to locate the SAM file in the shadow copy. Consequently, the user’s password hashes are easily accessible and a hacker will most probably be able to crack the hashes and take over the user’s PC.

Microsoft has already looked into the issue and has warned its users. The company provided a statement to Toms Guide, saying, “An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.”

Microsoft promises future “mitigations and workarounds” as its investigation progresses.

Along with promising workarounds, the company has suggested a few ways to keep your PC safe right now. These ways include restricting access to the file directory to the SAM, or deleting your shadow copy of Windows. However, the second way could be a pain if you ever need to restore Windows.

Other preemptive measures that you can take include avoiding spammy emails, installing a reliable antivirus, and restricting physical access to your PC by people you don’t trust.

Editors' Recommendations

This new Windows 11 feature will help you protect your passwords
A man sits, using a laptop running the Windows 11 operating system.
Hackers may be hiding in plain sight on your favorite website
A depiction of a hacked computer sitting in an office full of PCs.
Malwarebytes resolves error that was blocking Google this morning
malwarebytes shows av firms failing customers keyboard virus mem2
Windows 11 2022 Update: the best new features to try out today
Android Apps on Windows 11
HP Omen gaming laptops and PCs have massive price cuts today
The HP Omen 16.1-inch gaming laptop with the Omen logo on the screen.
We can’t believe how cheap this HP laptop deal is
Front angle of the HP Pavilion 15-inch laptop against a white background.
Best Buy is having a clearance sale on this fantastic 2-in-1 student laptop
The Inspiron 15 2-in-1 laptop in tent mode.
Tesla just shocked everyone with its Optimus robot prototype
An early, tethered version of the Optimus prototype could deliver a box to a desk.
Best monitor deals for October 2022
Dell UltraSharp 27 4K PremierColor Monitor
Tesla AI Day 2022: Optimus, self driving cars, and everything else announced
The Tesla Bot, Optimus, on a stage.
Best iPad Deals: Latest models on sale from $299
iPad Pro 2020 Screen
Best home internet deals for October 2022: AT&T, Spectrum, Optimum and more
how to optimize wifi network for work from home wrt1900acs router position location direction improve signal
How to change the login picture on a Mac
Login screen on a MacBook.