Buying Guides
by Review Geek

Browse All Buying Guides
How-to Geek Best Of Badge Award

Reader Favorites

8 Best Wireless Mechanical Keyboards
5 Best Places to Buy Vinyl Records Online
8 Best Hot Swappable Mechanical Keyboards
Apps to Share Your Location with Family
The 5 Best Trip Planning Apps
The Best Multi-Device Mice and Keyboards for Power Users
7 LEGO Alternatives That Still Work With LEGO Bricks

More from Review Geek

Browse All Buying Guides
Browse All Latest News

Review Geek Editorials

Why Everyone Needs to Stock up on Power Banks
I Switched to a Galaxy S21 and I Hate It
I Tried Carvana: It Was Worse Than The Dealer
Why We Can't Recommend Wyze or eufy Cameras
Don't Buy an Electric Riding Lawn Mower
Don't Buy This Fake 16TB Portable Hard Drive
You Don't Really Ever Own an EV

More from Review Geek

Browse All Reviews
Browse All Buying Guides
How-to Geek Editor Choice Badge Award

Across LifeSavvy Media

FROM LIFESAVVY
Grelife 24in Oscillating Space Heater Review: Comfort and Functionality Combined
VCK Dual Filter Air Purifier Review: Affordable and Practical for Home or Office
FROM HOW-TO GEEK
Dashlane Password Manager Review: Dashing to the Top of Our List
Keychron S1 QMK Mechanical Keyboard Review: A Compact, Customizable Board
We select and review products independently. When you purchase through our links we may earn a commission. Learn more.
X
Popular Searches
News

PrintNightmare Lives on Thanks to Ransomware Attackers

Suzanne Humphries
Suzanne Humphries
Former Commerce Editor

Suzanne Humphries was a Commerce Editor for Review Geek. She has over seven years of experience across multiple publications researching and testing products, as well as writing and editing news, reviews, and how-to articles covering software, hardware, entertainment, networking, electronics, gaming, apps, security, finance, and small business. Read more...

About Review Geek

| 1 min read
A computer programmer or hacker prints a code on a laptop keyboard to access unauthorized files
JARIRIYAWAT/Shutterstock.com

Despite Microsoft’s numerous attempts to successfully patch PrintNightmare, it’s still not over. Now, another Windows 10 PrintNightmare Print Spooler vulnerability has been uncovered, and it’s attracting ransomware attackers looking for easy access to system privileges.

Microsoft released multiple patches throughout July and August addressing the vulnerability and adjusted the process by which users can install new printer drivers. However, researchers still found a workaround to launch an attack through a newer Print Spooler vulnerability, dubbed CVE-2021-36958.

From a post in the Microsoft Security Response Center, Microsoft describes the vulnerability: “A remote code execution vulnerability exists when the Windows Print Spooler service improperly performs privileged file operations. An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.”

Microsoft also lists out the workaround for the vulnerability as “stopping and disabling the Print Spooler service.” The attacker will need admin privileges to install the necessary printer drivers; if a driver is already installed, however, such privileges aren’t necessary to connect a printer. Furthermore, drivers on clients are not required to be installed, so the vulnerability remains, well, vulnerable in any instances where a user connects to a remote printer.

Ransomware attackers, naturally, are taking full advantage of the exploits, according to Bleeping Computer. Magniber, a ransomware group, was recently reported by CrowdStrike to have been discovered in an attempt to exploit the unpatched vulnerabilities against South Korean victims.

There’s no word yet—from Microsoft or elsewhere—regarding whether the PrintNightmare vulnerability is at all in hand. In fact, CrowdStrike estimates “that the PrintNightmare vulnerability coupled with the deployment of ransomware will likely continue to be exploited by other threat actors.”

via Windows Central

Suzanne Humphries Suzanne Humphries
Suzanne Humphries was a Commerce Editor for Review Geek. She has over seven years of experience across multiple publications researching and testing products, as well as writing and editing news, reviews, and how-to articles covering software, hardware, entertainment, networking, electronics, gaming, apps, security, finance, and small business. Read Full Bio »