Skip to main content

Windows has a print vulnerability that hackers are actively using

Microsoft has updated its documentation around the “PrintNightmare” vulnerability that is impacting Windows PCs across the world. The company now says it is aware of the issue, which officially involves cases where the Windows Print Spooler service may perform privileged file operations and allow hackers into your device.

Though it’s not clear if all versions of Windows are impacted by this vulnerability, Microsoft says that the print spooler code that has the vulnerability is in all versions of Windows. The print spooler is what usually handles print jobs in Windows. Specifically, hackers can exploit that code to run arbitrary code with system privileges.

Recommended Videos

This can then be used to install programs, view, change, or delete data, or create new accounts with full user rights. Microsoft’s documentation makes it clear that the vulnerability has also been actively exploited, which means it is out in the wild and in use by hackers.

As a result, Microsoft is investigating if all versions of Windows are exploitable. If you’re worried, Microsoft urges uses who are concerned to stay tuned to a support page for updates. Microsoft also mentions that the vulnerability originated before this month’s June 2021 security update. It’s not clear if the update can patch this vulnerability, but it is still best to install the June 8 security updates just to be safe.

There are some workarounds for this matter, but most are up to system administrators to enable. The first workaround is to disable the print spooler service using Powershell. However, this might end up disabling the ability to print from a PC as well as through the network. A second temporary fix involves using Group Policy to disable remote printing, which will actually prevent the remote aspect of the vulnerability by preventing inbound remote printing operations. The U.S. Cybersecurity & Infrastructure Security Agency also recommends following these steps as well.

It’s not very uncommon for hackers to try and target printers and the printing service in Windows. Back in 2018, hackers were able to use old-school printers to invade home networks. PewDiePie supporters also hacked printers at the end of 2018 to send out messages of support for the YouTuber after a battle with another YouTube channel, T-Series.

Arif Bacchus
Arif Bacchus is a native New Yorker and a fan of all things technology. Arif works as a freelance writer at Digital Trends…
This beloved Mac-only app has finally come to Windows
iOS 16 Work Focus with a Fantastical widget and two rows of work-related apps

Highly popular (and expensive) calendar app Fantastical has launched a Windows version of its app, finally bringing it out of just the Apple ecosystem 13 years after its initial release.

The calendar has been rebuilt as a native Windows app with all of the features included on Mac, though it doesn't yet have an Arm-native version for Copilot+ PC owners.

Read more
Windows 11 to let you use your phone as a webcam
Using an Android phone as a webcam.

The Windows 11 update 24H2 includes a new feature called Connected Camera that lets you turn your smartphone into a webcam. The folks at PCWorld have tested the feature out, and it looks pretty easy to use, though you do need to have an Android phone to use it.

Using your phone as a webcam -- either for your desktop or your laptop -- isn't new, but native support for it has been patchy. At first, people had to use third-party apps to do the job. Then Apple users got Continuity Camera, and a few years later Android 14 users got a similar feature, too.

Read more
Windows 11 24H2 may crash your PC if you have a certain SSD
The blue screen of death in Windows.

Microsoft's Windows 11 2024 Update, more commonly referred to as 24H2, is here, but it's not without issues. Reports from disgruntled users have flooded various forums, talking about constant blue screens of death (BSOD) that have appeared since they updated to the latest version of Windows. Although Microsoft has yet to officially acknowledge the problem, the users seem to have pinpointed the cause of it, and even found a workaround.

So far, it looks like these crashes are fairly limited in scope, as they seem to happen if you have one of a few Western Digital SSD models. Other SSD vendors appear unaffected so far. As reported on the WD Community Forums, users are getting BSODs with the error "critical process has died" ever since they updated to the 24H2 update.

Read more