Contact us today!
866-348-2602

Total Tech Care Blog

Total Tech Care has been serving Florida since 2001, providing IT Support such as technical helpdesk support, computer support, and consulting to small and medium-sized businesses.

How 2 Keystrokes Can Bypass the Security of Windows

How 2 Keystrokes Can Bypass the Security of Windows

Usually, when a troubleshooting feature is put in place, it is meant to assist the user in resolving an issue. However, one such feature in Windows 10 could ultimately lead to more problems, as it also can serve as a free-ride vulnerability for an opportunist bystander.

Security expert Sami Lailo discovered that if someone keys in Shift + F10 during a ‘Feature Update’ in Windows 10, they are able to access a Command Prompt window with Admin privileges. Compounding this with the fact that Microsoft updates disable BitLocker while they are in progress, means that someone could feasibly access the hard disk without the aid of any external device.

If that someone happened to be ill-intentioned, they could potentially wreak havoc through the command-line interface. Admittedly, the perpetrator would have to move quickly, but if they had come in with a plan and the foreknowledge of a Feature Update being implemented, they would have plenty of time to do what they had come to do.

Lailo reached out to Microsoft, and the company is now working to resolve this issue.

The current fix? Don’t leave an updating workstation unattended, despite the long periods of time updates can sometimes take.

Once Microsoft releases a patch, businesses and organizations will want to apply it. Keep in mind, any Total Tech Care clients on our managed services will have the update applied once it is tested. Give us a call at 866-348-2602 to learn more.

 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Thursday, 24 April 2025
If you'd like to register, please fill in the username, password and name fields.

Blog Archive

Sign Up for Our Newsletter

  • First Name *
  • Last Name *

      Free Consultation

      Sign up today for a
      FREE Network Consultation

      How secure is your IT infrastructure?
      Let us evaluate it for free!

      Sign up Now!

      Free Consultation
       

      Tag Cloud

      Security Tip of the Week Technology Best Practices Business Computing Cloud Privacy Hackers Productivity Hosted Solutions Efficiency Software Network Security Google Business Internet Microsoft Email Malware Backup Workplace Tips Innovation User Tips Data Computer Mobile Devices IT Services Hardware Android VoIP Disaster Recovery communications IT Support Smartphones Communication Business Continuity Miscellaneous Smartphone Mobile Device Browser Small Business Network Collaboration Productivity Cybersecurity Quick Tips Users Business Management Windows Managed IT Services Phishing Upgrade Data Backup Outsourced IT Ransomware Windows 10 Server Save Money Data Recovery Office Cloud Computing Passwords Windows 10 Gadgets Chrome Virtualization Social Media Saving Money Holiday Tech Term Microsoft Office Automation Managed Service Managed IT Services Operating System Artificial Intelligence Computers Facebook Cybercrime Hacking Wi-Fi BYOD Mobile Device Management Networking Health Internet of Things IT Support Managed Service Provider Alert Spam Office 365 Remote Telephone Systems Information Information Technology Covid-19 Social Engineering Mobility Router Employer-Employee Relationship Bandwidth Recovery BDR Big Data Remote Monitoring Password Data Breach Money App Encryption Mobile Computing History Applications Application Law Enforcement Human Resources Remote Computing Data Storage Patch Management Managed IT Mobile Office Apps Blockchain Office Tips Paperless Office Training How To VPN Government Private Cloud Vulnerability Mouse HaaS Windows 7 Word Bring Your Own Device Data Management Work/Life Balance Servers Flexibility Marketing WiFi Wireless Data Security IT solutions Entertainment Google Drive Website Budget Gmail Infrastructure Settings Avoiding Downtime Voice over Internet Protocol Two-factor Authentication Apple Conferencing Save Time Social Data Protection Scam User Error Cleaning Meetings Vendor Management Risk Management End of Support Hacker Education Physical Security Telephone System Staff Software as a Service Safety The Internet of Things Machine Learning Vendor Lithium-ion battery Sports HIPAA Redundancy Connectivity Remote Work USB Managed Services Display Keyboard Firewall Employee/Employer Relationship RMM Virtual Reality Solid State Drive Remote Worker Wireless Technology Computing How to Downtime Cryptocurrency Network Congestion Business Intelligence eWaste Data storage Audit Worker Automobile Digital Signage IT Management Comparison Botnet CES Computing Infrastructure Virus Going Green IT Plan Wearable Technology Retail Hard Drives Business Technology Content Management Procurement Unified Threat Management Instant Messaging Computer Accessories Robot Net Neutrality Excel Access Control Unsupported Software Workplace Strategy Battery Help Desk Virtual Assistant Shadow IT Charger Biometrics Printing Virtual Desktop Legal Authentication Compliance Internet Exlporer OneNote Computer Care Printer DDoS Current Events Bluetooth Managed Services Provider Telephony Update SharePoint Samsung PDF Database Proactive IT Google Docs Value Remote Workers Customer Service Identity Theft IT Consultant Spam Blocking Electronic Medical Records Processor Environment Best Practice YouTube Fax Server Black Market Humor Hiring/Firing Hard Drive Augmented Reality SaaS Fraud Document Management Smartwatch Smart Tech Ergonomics Trending Consultant Assessment IaaS Development Analytics Maintenance OLED Addiction Windows Server 2008 Amazon Tools Recycling PCI DSS Virtual Machine Bloatware Files Employee Wiring Chromecast Practices 2FA Best Available Television Fiber Optics Amazon Web Services WIndows 7 Messaging Cabling Tablets Cache Safe Mode Uninterrupted Power Supply Criminal Policy Hypervisor Entrepreneur Colocation Trend Micro GDPR Hosted Computing Dark mode Public Computer Online Shopping SMS Shortcut Transportation Default App Monitor Wireless Internet Regulations File Sharing Computer Fan Procedure Rootkit Saving Time Cost Management Shopping Social Networking Google Search Camera Inventory dark theme Specifications Evernote User Workers AI PowerPoint Benefits IT Infrastructure Windows Media Player Reputation Wire Streaming Media Bing Tech Support FENG FinTech Travel Content Social Network Techology Printers Laptop Millennials Running Cable IBM Wireless Charging Managing Stress Smart Technology Investment Memory Customers Smart Office Flash Employees Audiobook Employee/Employer Relationships Cameras ISP Virtual Private Network Touchpad Software Tips Windows 365 Workforce Supercomputer Cables Emails Video Conferencing ROI Sync Shortcuts Sales Politics Bitcoin Advertising Personal Cryptomining Science Project Management Nanotechnology Point of Sale Telecommuting Cortana Netflix Supply Chain Management Two Factor Authentication Notifications Digital Signature Root Cause Analysis Monitoring Batteries Digitize Printer Server Customer Relationship Management Music Warranty HBO Windows 8.1 Distributed Denial of Service Knowledge Google Apps Windows Server 2008 R2 Analyitcs Relocation HVAC Skype Analysis Data loss Customer relationships Programming IT Assessment Troubleshooting Video Games Manufacturing Administrator Devices Outlook Email Best Practices Leadership Start Menu Worker Commute Enterprise Content Management Security Cameras MSP Accountants Screen Mirroring Computer Tips Antivirus Loyalty Experience Managed IT Service OneDrive Books Scalability Biometric Security Windows 8 Microchip Thought Leadership Frequently Asked Questions Virtual CIO Credit Cards Mobile Password Manager Windows 10s Peripheral IT service Business Owner Password Management NarrowBand Cast Digital Security Cameras Multi-Factor Security Using Data webinar Copiers Emergency Search 5G Tablet Search Engine Twitter Tip of the week Professional Services Business Mangement Public Cloud Quick Tip Domains Employer Employee Relationship iPhone NIST

      Top Blog

      The reasoning for this is simple: you want to make sure that operations are proceeding as intended, even if you’re not there. If you completely check out from the workplace every time you leave, you could return from your vacation to a complete and total disaster that may have been prevented with y...
      QR-Code