Microsoft released two emergency updates to address the gap security "aCropalypse" which affects the native screenshot editing applications of Windows 10 and 11.
Such as he says η Bleeping Computer, η εταιρεία άρχισε να δοκιμάζει μια επιδιόρθωση για την ευπάθεια νωρίτερα αυτή την εβδομάδα, λίγο μετά την ανακάλυψή της από τον μηχανικό software Chris Blume.
On Friday afternoon, Microsoft began publicly rolling out updates to Windows 11's Snipping Tool as well as Windows 10's Snip & Sketch app. You can manually request the updates from Windows by opening the Microsoft Store, click in “Library” and then “Get updates”.
Microsoft recommends that all users install the updates.
The aCropalypse flaw was first discovered on Pixel devices by Google which fixed it in the latest (March) Android security update.
In the case of the Windows 11 Snipping Tool, it turned out that the utility was not correctly replacing the clipped data in PNGs. This problem did not affect all PNG files, but there was concern that maliciousUsers could exploit the vulnerability to retrieve edited images, especially those that had been cropped to delete sensitive information.
As with Google's March Android update, Microsoft's updates will not protect images previously created with screenshot tools.
