Skip to main content

Microsoft issues its first HoloLens security patch in July’s Patch Tuesday

microsoft july 2017 patch tuesday hololens lowe s
Image used with permission by copyright holder
Recent malware attacks such as the WannaCry and Petya ransomware epidemics have highlighted the need to keep our PCs fully updated if we want to remain even remotely safe from attack. It doesn’t matter if you’re running Windows 10 or MacOS, there are threats popping up all the time that companies are responding to with security patches. But it is not just your PC — ancillary devices like the HoloLens augmented reality headset can also be vulnerable.

Tuesday was Microsoft’s usual Patch Tuesday, its time of the month when it issues its main security update for Windows systems. This time around, as Trend Micro points on in its security blog, it was not just the core Windows components that were inoculated against potential threats — HoloLens also received its very first security patch.

According to Microsoft’s security advisory, CVE-2017-8584 is a vulnerability involving remote code execution that was identified in HoloLens, whereby the device does not correctly handle a specific kind of attack that is delivered via Wi-Fi. Trend Micro reports that HoloLens use is not very widespread compared to PCs and other more popular devices, but this particular patch is notable for being the first reminder that such systems can represent yet another vector of attack.

In fact, HoloLens is particularly interesting from a security perspective because it is an entirely stand-alone device that does not use a PC or other device such as a smartphone to do its computing. Systems like Oculus Rift and the HTC Vive rely on PCs and their software is continuously being updated to fix potential security vulnerabilities. But this Patch Tuesday could very well be the first time a stand-alone AR system has received a security patch.

July’s Patch Tuesday was not all about HoloLens, of course. Internet Explorer also got the usual round of fixes, as did Microsoft’s Edge browser that is meant to succeed the older application. A fix for Windows Search, CVE-2017-8589, was also released to ward off attacks that could allow a nefarious party to take over an infected system.

While the HoloLens patch is applicable to far fewer people, the rest of Patch Tuesday’s fixes are — as always — vital and we recommend users keep automatic updates turned on so these and other fixes are applied immediately. The vulnerability behind both WannaCry and Petya was fixed in March for actively supported systems, and so anyone running Windows 10 and was fully patched did not have to worry about infection. However, running an obsolete and unsupported version of Windows or turning updates off was an easy way to see that horrifying ransomware notice pop up.

Editors' Recommendations

Mark Coppock
Mark has been a geek since MS-DOS gave way to Windows and the PalmPilot was a thing. He’s translated his love for…
Microsoft’s new HoloLens hologram tech can do language translation
Microsoft HoloLens 2

Not only is it possible to have a fairly realistic holographic replica of yourself, but Microsoft has just shown that it is also possible to have that same replica speak in different languages, too.

According to The Verge, on Wednesday, July 17, Microsoft provided a demo of this latest innovation during its keynote speech at the Microsoft Inspire partner conference in Las Vegas. Tom Warren of The Verge posted a video clip on YouTube of Microsoft’s demonstration of the hologram’s language translation capabilities.

Read more
Unreal Engine 4 support for developers coming to Microsoft’s HoloLens 2 in May
hololens 2 news roundup demo mwc 2019

Julia Schwarz, Microsoft corporate vice president for Azure marketing, demonstrates the HoloLens 2 headset at MWC 2019. Jeremy Kaplan / Digital Trends

In an effort to get developers on board to create new and exciting content for its mixed reality HoloLens 2 headset, Microsoft announced the HoloLens 2 Development Edition package. Though the initial version of HoloLens will be sold to businesses and corporate customers for $5,000, developers can pick up HoloLens 2 as part of the Development Edition pricing for just $3,500. In addition to the glasses, Microsoft announced that the package will also include $500 of Azure credits along with a three-month trial of Unity Pro and Unity PiXYZ Plugin for CAD data.

Read more
Lenovo sale: Get up to 67% off ThinkPad Laptops, from $600
Lenovo ThinkPad X1 Carbon Gen 12 front angled view showing display and keyboard.

Lenovo has a huge laptop sale going on right now with select ThinkPad laptops available from just $600. If you need a new system for your small business, working on the move, or other productivity-focused plans, these are the laptop deals for you. With over a dozen laptops in the sale, it’s a good idea to take a look at the sale for yourself, but we’re also here with some insight into the best deals.

What to shop for in the Lenovo laptop sale
Lenovo is one of the best laptop brands for reliability and business purposes. One great starting point is being able to buy the for $600. According to Lenovo, it normally costs $1,839 which seems a little unrealistic but in keeping with Lenovo’s overly enthusiastic estimated value system. However, whatever the discount, this is a good laptop for the price. It has a 12th-generation Intel Core i5-1235U processor, 16GB of memory, and 256GB of SSD storage. For the display, you get a 14-inch full HD screen with 45% NTSC and 300 nits of brightness. There’s also a 1080p full HD RGB/IR Hybrid webcam with a privacy shutter and dual microphones.

Read more