Skip to main content

Microsoft now says Windows computers could have a ‘FREAK’ attack

kentucky hospital subjected to ransomware hacker keyboard
Image used with permission by copyright holder
Computers running Windows are vulnerable to the so-called “FREAK” attack, which gives hackers the power to decrypt secure traffic between a web surfer’s browser and the site she is visiting. Microsoft had said at first that the Windows system was immune to such attacks, but a recent advisory posted to the company’s TechNet site has confirmed the vulnerability.

“Microsoft is aware of a security feature bypass vulnerability in Secure Channel that affects all supported releases of Microsoft Windows,” the company wrote. “We are actively working with partners in our Microsoft Active Protections Program to provide information that they can use to provide broader protections to customers.”

Recommended Videos

Until the situation is under control, users are vulnerable to FREAK — but what is it exactly?

“FREAK” is short for Factoring attack on RSA-EXPORT Keys, according to ArsTechnica.com. The attacks are possible when a vulnerable user logs onto a vulnerable HTTPS-protected website using a device prone to being compromised. In this case, Windows computers fall into that category.

PCs and laptops aren’t the only products that could have a FREAK attack, however. Prior to the announcement from Microsoft, everything from iPhones to Android devices was thought to be susceptible to an attack.

During a FREAK attack, hackers watch the traffic passing between browsers and vulnerable servers. They can then inject malicious packets into the flow that cause the two parties to use a weak, 512-bit encryption key. With this weakness in place, hackers can collect some of the exchanged information using cloud-based computing.

Security researchers have found that out of 14 million HTTPS-protected websites, about 36 percent of them supported weak cipher, rendering them vulnerable to a FREAK attack. They note that companies including Google, Microsoft, and Apple have been slow to develop patches, which hints that FREAK attacks pose a low threat at the moment.

So don’t FREAK out just yet.

Krystle Vermes
Former Digital Trends Contributor
Krystle Vermes is a professional writer, blogger and podcaster with a background in both online and print journalism. Her…
This new Windows 11 setting could improve performance and battery life
Windows 11 updates are moving to once a year.

Yesterday, Microsoft released the Windows 11 26252 build, which brings a flood of innovations that will give users a much-needed power boost. One of those changes is a new power setting that will provide the user more control when their PC is on battery power or not, as Phantom Ocean 3 mentions in a post on X (formerly Twitter), which was noticed by Windows Latest.

In theory, this greater degree of control will allow your system to automate power settings so that you don't forget to manually switch them while plugged in or on battery.

Read more
Microsoft is backpedaling on future Windows 10 updates
The Windows Update screen in Windows 10.

Windows 10 is on its way out, with support ending in October 2025. That isn't changing, though Microsoft's approach to rolling out new features in the meantime definitely has. In a surprising move, Microsoft announced in a June 4 Windows Insider Blog post that it is bringing a Beta Channel for those Windows Insiders currently running on Windows 10 version 22H2.

This means that despite the end of support, Windows 10 users will continue to get some new features that were initially restricted to Windows 11, such as the new Copilot app. It's also possible that other features may be on the way, but Microsoft has not released any further information on the subject. It was originally stated that Windows 10 version 22H2 would be its final feature update, but that appears to not be true anymore.

Read more
Microsoft is adding a controversial app to Windows 11
Microsoft Surface Laptop 2 sitting on a table.

A new Windows 11 build is rolling out in Microsoft's Beta channel, and it includes an app that's been caught up in some controversy. Build 22635.3646 includes the PC Manager app for devices in China by default. This app is already available through the Microsoft Store, but the update suggests the app might be part of Windows 11 more broadly soon.

PC Manager falls in the category of "system optimizers" along the lines of the  Razer Cortex Game Booster. It cleans out temporary files, frees memory that's not being used, and digs deep into your hard drive to clean out unused files. According to Microsoft, it can even "reduce ads and app pop-up interruptions." An system optimizer from Microsoft sounds great as an official release in Windows 11.

Read more