Actively Exploited Windows Bugs Highlight Urgency of Microsoft’s Latest Security Update
Microsoft has released fixes for 183 security problems across its products, including three serious bugs currently being used by hackers. The update comes as Microsoft officially ends support for Windows 10, unless users sign up for a paid Extended Security Updates (ESU) program.
What's the Risk?
- Three of the fixed problems have already been used in real-world cyberattacks:
- Two issues in Windows could let hackers take control of a PC by taking advantage of outdated system parts, even if those parts aren’t actively being used.
- A third problem affects IGEL OS, a system used for virtual desktops, allowing attackers with physical access to get around important security measures.
These bugs are urgent, and U.S. federal agencies have been told to apply the fixes by November 4.
Other Important Fixes
- Microsoft also fixed other serious problems that could let hackers:
- Break into servers
- Get past web security protections
- Escape from a virtual machine and access other systems on the same server
- While some of these attacks need certain access, experts warn they could cause major damage if not fixed.
What Should You Do?
- If you're using Windows 10, consider upgrading or signing up for the ESU program to stay protected.
- Install the latest Microsoft updates as soon as possible.
- Keep an eye on security updates from other major tech companies like Apple, Google, Adobe, and Dell, who have also released fixes recently.
With cyber threats growing, keeping your software updated is one of the easiest and most effective ways to stay safe.
Source: https://thehackernews.com/2025/10/two-new-windows-zero-days-exploited-in.html
Christine (TinSu) Sugui |
News
Created: October 16 2025 | Updated: on 10/16/25