Windows 10 Anniversary Update: New Features. (Photo : YouTube/ Windows)
Microsoft is once again on the hot seat after Google allegedly exposed a security concern in Windows 10, which makes experts in the field skeptical about the actions that were taken by search engine giant.
Despite being busy with their respective product launches and app launchings, Microsoft and Google managed to meet each other from a diametrically opposed position concerning online security. It is now widely speculated online that Google might have overstepped its authority when it immediately disclosed a Windows 10 vulnerability making Windows users open for attacks.
"The Windows vulnerability is a local privilege escalation in the Windows kernel that can be used as a security sandbox escape," Google expressed on their official security website. "Chrome's sandbox blocks win32k.sys system calls using the Win32k lockdown mitigation on Windows 10, which prevents exploitation of this sandbox escape vulnerability."
This announcement came seven days after Microsoft failed to advise and fix the said vulnerability found in their system. Windows 10 and its known security flaw prompted Google to immediately resort to disclosure towards its users to protect their interest. And the same thing happened when Adobe Flash also had a security concern with their product.
However, unlike the said incident when Google shared the vulnerability and issues were addressed accordingly and promptly, most software experts and companies argued that giving Microsoft only a week to perform the critical task and coding to patch security vulnerability of Windows 10 is not enough. Researcher working the field of internet security are convinced that details about the security flaw should have only been shared when the patch is already available and operational, according to Venture Beat.
This is not the first time that security issues were noticed and publicized by Google without giving ample time for Microsoft to assess and drastically make some changes. In retrospect, a similar thing happened between Microsoft and the search engine giant back in January 2015, and the concern was likely focused on the vulnerabilities of Windows 8.1.
The situation before as compared to the matter at hand is considerably serious, for Google declared that the critical Windows 10 security flaw is "being actively exploited" deducing that more users are prone to online attacks. And in response to the said disclosure of Microsoft's security flaw, the PC giant gave a statement.
"We believe in coordinated vulnerability disclosure, and today's disclosure by Google puts customers at potential risk. We recommend customers use Windows 10 and the Microsoft Edge browser for the best protection," a Microsoft spokesperson told VentureBeat.
With the latest clash of Titans of the tech industry, most users remain at the mercy of their quick resolution and assurance of invulnerability from online attacks. Guess we would just have to wait for further notice regarding the disclosure made by Google against Microsoft's security flaw.
