Skip to main content
  1. Home
  2. Computing

HiveNightmare is a nasty new Windows bug. Here’s how to protect yourself

By

A new bug called ‘HiveNightmare’ reportedly lets anyone with local or remote access to your PC take it over. This is a fairly new and serious flaw in the latest versions of Windows 10, as well as in Windows 11, which is still being tested in the Windows Insiders program.

Using malware, the hacker can gain complete access to your PC without needing an administrative password. The bug originates from an alleged change in the recent versions of Windows 10 and 11 that grants unauthorized users the privilege to access the Security Account Manager (SAM). The SAM is a database that contains both usernames and passwords for local accounts on the operating system.

Recommended Videos

Unauthorized users can access a backed-up version of the SAM in a shadow copy that Windows systems create. A shadow copy is a backup, hidden on the main drive, of a Windows system’s most important files. Your system creates a shadow copy each time it installs a system update or upgrade. So, malware that gets onto a PC via a dodgy-looking email, phishing software, or a malicious web link would be able to locate the SAM file in the shadow copy. Consequently, the user’s password hashes are easily accessible and a hacker will most probably be able to crack the hashes and take over the user’s PC.

Related

Microsoft has already looked into the issue and has warned its users. The company provided a statement to Toms Guide, saying, “An attacker who successfully exploited this vulnerability could run arbitrary code with SYSTEM privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.”

Microsoft promises future “mitigations and workarounds” as its investigation progresses.

Along with promising workarounds, the company has suggested a few ways to keep your PC safe right now. These ways include restricting access to the file directory to the SAM, or deleting your shadow copy of Windows. However, the second way could be a pain if you ever need to restore Windows.

Other preemptive measures that you can take include avoiding spammy emails, installing a reliable antivirus, and restricting physical access to your PC by people you don’t trust.

Editors’ Recommendations

Topics
Dua Rashid
Dua Rashid
Former Digital Trends Contributor
Dua is a media studies graduate student at The New School. She has been hooked on technology since she was a kid and used to…
You definitely want to install these 90 Windows security patches
Microsoft Surface Laptop Go 3 rear view showing lid and logo.

Microsoft has issued security updates to address 90 vulnerabilities, some of which hackers are actively exploiting, in a blog post yesterday. These flaws allow hackers to bypass security features and gain unauthorized access to your PC's system, highlighting the need to keep your Windows computer updated.

Nine are rated Critical, 80 of the flaws are rated Important, and only one is rated Moderate in severity. In addition, the software giant has patched 36 vulnerabilities in its Edge browser in the past month to avoid issues with its browser. Users will be happy to know that the patches are for six actively exploited zero-days, including CVE-2024-38213. This lets attackers bypass SmartScreen protections but requires the user to open a malicious file. TrendMicro's Peter Girnus, who discovered and reported the flaw, proposed it could be a workaround for CVE-2023-36025 or CVE-2024-21412 that DarkGate malware operators misused.

Read more
PC gamers still prefer Windows 10 over Windows 11
A man stands in front of a gaming PC.

Windows 11 saw a decline in the latest Steam hardware and software survey for July 2024. According to Valve's data, gamers using Microsoft's newer operating system dropped below the 46% threshold. Currently, Windows 11 accounts for approximately 45.81% of all Windows users on Steam, marking a decrease of 0.82% from the previous month.

In contrast, Windows 10 experienced an increase of 0.74%, reaching a 50.16% share. Although gaming performance is generally similar on both operating systems, a recent test by Hardware Unboxed reveals that Windows 10 may offer better performance in certain titles due to the core isolation feature, where memory integrity is enabled by default on Windows 11.

Read more
Here’s how much RAM Windows 11 actually uses
A man sits, using a laptop running the Windows 11 operating system.

Upgrading to Windows 11 comes with a few requirements, and that includes a bump in random access memory (RAM) compared with Windows 10.

Windows 11, while it introduces a host of new features, may consume more RAM than its predecessor, but the amount of memory that it uses is not universal. Below, we'll explain what RAM is, explore how much RAM Windows 11 actually uses, and how to lower that amount if your PC is having a hard time.
Windows 11: RAM usage when idle

Read more