There's no official response or fix from Microsoft for now. The option to name the folder will be shown when you expand the folder that has several tiles in it. Victims that opened the Office document would silently be infected via a malicious webpage opened in the background.
Security experts recommend all Windows users - individuals and businesses alike - patch this flaw as quickly as possible.
"This is the first time we've seen a URL moniker used to load an IE exploit, and we believe this technique will be used heavily by malware authors in the future", wrote security analysts from Kaspersky Labs. Also that the complete session will soon be posted to Microsoft Build website.
Rumor: Twitter Is Testing An Encrypted Messaging Feature
The unreleased secret conversation option was discovered by Jane Manchun Wong , who posted screenshots on Twitter soon after. Now we know the company took the advice seriously, though its plans for implementing the privacy tool remain unclear.
Neither Kaspersky Lab nor Microsoft have disclosed details of the attack they have observed leveraging this vulnerability, though Microsoft noted in its bulletin that attackers exploiting this vulnerability can gain the same user rights as the logged in user.
The flaw was discovered and reported to it by Anton Cherepanov, a senior malware researcher at ESET, Microsoft says. Both Windows 7 (32/64-bit) and Server 2008 R2 are vulnerable to the Win32k bug.
"Two Microsoft vulnerabilities this month are known to be exploited in the wild".
At Build, the company revealed that the next Insider build of Windows 10 will not only let you Alt-Tab between running programs, but also browser tabs.
"CVE-2018-8174, on the other hand, affects all supported versions of Windows and could lead to arbitrary code execution", said Wiseman. Exchange administrators should note two patches, including one that addresses a spoofing vulnerability (CVE-2018-8153).
Taylor Swift announces the end of her notorious feud with Katy Perry
A month before she said that, though, Katy told James Corden that Taylor "started it", and "it's time for her to finish it". Swift shared a photo of the letter on her Instagram story with a header reading "Thank you, Katy" with dual heart emojis.
Also, Microsoft has fixed a spoofing vulnerability in its Azure IoT Device Provisioning AMQP Transport library. "To exploit this vulnerability, an attacker would need to perform a man-in-the-middle (MitM) attack on the network that provisioning was taking place".
This month's releases also contain an out-of-band patch for CVE-2018-8115, affecting the Windows Host Compute Service Shim library, which helps to launch Windows Server containers from providers like Docker.
In addition, Hyper-V has been getting some attention lately as well.
The new face of Windows 10 experiences, Joe Belfiore sent out an equal parts confusing and cryptic tweet regarding Cloud Clipboard earlier today.
Walmart to restrict opioids prescriptions at its pharmacies
Pharmacists also will undergo a pain management curriculum , using the CDC's guidelines on pain management to counsel patients. With 5,300 stores in the U.S., Walmart is one of the largest distributors of prescription drugs in the country.