Microsoft Releases Security Patches

By Ian Bell June 15, 2005

All ten of the patches were released as part of the monthly update schedule. The three critical patches fix problems in Windows and Internet Explorer that could potentially let hackers remotely control your PC.

The bug in Internet Explorer allows web pages with malicious code stored in the form of PNG graphic files, to give a hacker remote access to your computer.

Like JPG or GIF, the PNG graphic format is growing in popularity due to its high compression capabilities. Earlier this year another PNG security flaw was found exploiting vulnerabilities in Windows Media Player and MSN Messenger related products.

Other bugs include a flaw in the Windows HTML help system.

Look for the latest security patches to be available on the Windows Update site.

Ian Bell

Publisher

I work with the best people in the world and get paid to play with gadgets. What's not to like?

Computing

A dangerous new jailbreak for AI chatbots was just discovered

Microsoft has released more details about a troubling new generative AI jailbreak technique it has discovered, called "Skeleton Key." Using this prompt injection method, malicious users can effectively bypass a chatbot's safety guardrails, the security features that keeps ChatGPT from going full Taye.

Skeleton Key is an example of a prompt injection or prompt engineering attack. It's a multi-turn strategy designed to essentially convince an AI model to ignore its ingrained safety guardrails, "[causing] the system to violate its operators’ policies, make decisions unduly influenced by a user, or execute malicious instructions," Mark Russinovich, CTO of Microsoft Azure, wrote in the announcement.

Editors’ Recommendations