Skip to main content
  1. Home
  2. Computing
  3. News

Windows has a print vulnerability that hackers are actively using

Arif Bacchus
By

Microsoft has updated its documentation around the “PrintNightmare” vulnerability that is impacting Windows PCs across the world. The company now says it is aware of the issue, which officially involves cases where the Windows Print Spooler service may perform privileged file operations and allow hackers into your device.

Though it’s not clear if all versions of Windows are impacted by this vulnerability, Microsoft says that the print spooler code that has the vulnerability is in all versions of Windows. The print spooler is what usually handles print jobs in Windows. Specifically, hackers can exploit that code to run arbitrary code with system privileges.

This can then be used to install programs, view, change, or delete data, or create new accounts with full user rights. Microsoft’s documentation makes it clear that the vulnerability has also been actively exploited, which means it is out in the wild and in use by hackers.

Related

As a result, Microsoft is investigating if all versions of Windows are exploitable. If you’re worried, Microsoft urges uses who are concerned to stay tuned to a support page for updates. Microsoft also mentions that the vulnerability originated before this month’s June 2021 security update. It’s not clear if the update can patch this vulnerability, but it is still best to install the June 8 security updates just to be safe.

There are some workarounds for this matter, but most are up to system administrators to enable. The first workaround is to disable the print spooler service using Powershell. However, this might end up disabling the ability to print from a PC as well as through the network. A second temporary fix involves using Group Policy to disable remote printing, which will actually prevent the remote aspect of the vulnerability by preventing inbound remote printing operations. The U.S. Cybersecurity & Infrastructure Security Agency also recommends following these steps as well.

It’s not very uncommon for hackers to try and target printers and the printing service in Windows. Back in 2018, hackers were able to use old-school printers to invade home networks. PewDiePie supporters also hacked printers at the end of 2018 to send out messages of support for the YouTuber after a battle with another YouTube channel, T-Series.

Editors' Recommendations

Topics
The 6 biggest problems with ChatGPT right now
ChatGPT and OpenAI logos.
Hack involved the data of a nation’s entire population
A depiction of a hacker breaking into a system via the use of code.
Hackers dug deep in the massive LastPass security breach
The LastPass logo appears in front of a menacing hooded figure.
These 7 AI creation tools show how much AI can really do
Metaphor works like DALL-E and Stable Diffusion but uses AI to fill in prompts with links instead of text or images.
GPU prices and availability (February 2023): how much are GPUs today?
An AMD Radeon RX 6500XT placed on a motherboard.
The best PC power supply for 2023
PC power supply in a case.
ChatGPT has a new way to detect its own plagiarism
The ChatGPT chatbot by OpenAIis now available for testing as a as a free research preview this week.
Samsung Galaxy Book 3 Ultra vs. MacBook Pro 16-inch
Someone typing on the Samsung Galaxy Book 3 Ultra.
The Galaxy Book 3 Ultra is Samsung’s most powerful laptop ever
Samsung Galaxy Book3 Ultra laptop.
Nvidia may have another monster GPU in the works, and the price could be outrageous
GeForce RTX logo is shown on the side of a graphics card.
AMD’s Ryzen 9 7950X3D pricing keeps the pressure on Intel
A hand holding AMD's Ryzen 9 7950X3D processor.
What is ChatGPT Plus? Everything we know about the premium tier
Close up of ChatGPT and OpenAI logo.
ChatGPT Plus to bring priority access during peak times — at a hefty price
ChatGPT and OpenAI logos.