Microsoft spokesperson revealed that the company had incorrectly published a test update and is already working on it to have it removed.
Microsoft rumors are spreading on whether the company's servers have been compromised, as users have received the new Windows 7 update that showed unusual details. Numerous users on various platforms, including Windows forums, Reddit and Twitter shared their thoughts on the suspicious looking important update.
Microsoft Support forum user James Devoll said that the update seems to be a language pack, including unusual details that sent Denmark some rotten signals. The said details about the suspicious update also got the attention of security researchers such as Joshua Drake, the Senior Zimperium Security researcher. Drake has made his name recently due to his disclosure of the Android Stagefright bug that exploited Android's multimedia playback tool.
Microsoft forum users have reached out to Drake to get his insight on the suspected Microsoft Server breach and the said Windows 7 update, ZDNet reported. He said that he didn't have the chance to really look into an issue as close as possible, but it seems like a potential problem, which he thinks, Microsoft will soon regard.
"I don't have any further details then what you can see from that thread," Drake shared through the Microsoft Forum. "I'm not sure if the updates are event encrypted over the wire."
"Either way, if those users are spread across the Internet it seems like a very impressive attack," Drake added. "It might not even be dangerous, as perhaps the updates are not properly signed and thus can't actually be installed. Still, it looks really bad to me from a glance."
Don Bailey, Security research from Lab Mouse also shared his thoughts on the issue and stated it is more likely a malicious injection into the update. According to him, it could be a bug.