Category: General|Aug 23, 2021 | Author: Admin

Razer Synapse can hack machines: plug in your mouse to become a Windows 10 admin

Share on

If you use one or more Razer products, you have probably come across Synapse.

Razer is aware of this shocking security flaw
Now the program is in the spotlight not due to improvements, but a scary hole that is very easy to exploit: when you plug in a device, mouse as keyboard, Windows 10 and 11 automatically download Synapse.

 

Razer wants to make it as easy as possible for customers, and that is basically a good thing - until holes are discovered, and that is something that will always occur. In other words, this feature should be disabled forever.

 

No manufacturer should auto-install this way
To understand how easy it is to take advantage of this, you need to understand what happens in the background when connecting Razer USB devices

 

Windows Update downloads and run RazerInstaller as a "system". When this happens, all you have to do is open Powershell with administrator privileges (shift and right mouse click at the same time).

 

Razer is working on a solution (the company promises rewards even though the error was widely known by "jonhat"), but now the question is: how many other products can trigger the same problem?

Sponsored Ads:

Comments:


Discord blocked in Russia and Turkey for spreading illegal content

Category: IT|Oct 9, 2024 | Author: Admin

Google ordered to open up the Play Store in Epic Games antitrust ruling

Category: Google|Oct 8, 2024 | Author: Admin

Recently patched CUPS flaw can be used to amplify DDoS attacks

Category: IT|Oct 7, 2024 | Author: Admin

Google removes Kaspersky's antivirus software from Play Store

Category: Google|Oct 6, 2024 | Author: Admin

UK nuclear site Sellafield fined $440,000 for cybersecurity shortfalls

Category: IT|Oct 5, 2024 | Author: Admin

Cloudflare blocks largest recorded DDoS attack peaking at 3.8Tbps

Category: IT|Oct 4, 2024 | Author: Admin

Microsoft blocks Windows 11 24H2 on some Intel PCs over BSOD issues

Category: Microsoft|Oct 3, 2024 | Author: Admin

Microsoft Office 2024 now available for Windows and macOS users

Category: Microsoft|Oct 2, 2024 | Author: Admin

HPE Aruba Networking fixes critical flaws impacting Access Points

Category: IT|Oct 1, 2024 | Author: Admin

Verizon outage: iPhones, Android devices stuck in SOS mode

Category: Apple|Sep 30, 2024 | Author: Admin

Urgent warning issued to Android users over malicious threat affecting millions of devices

Category: Google|Sep 29, 2024 | Author: Admin

Windows Recall now can be removed, is more secure

Category: Microsoft|Sep 28, 2024 | Author: Admin

CUPS flaws enable Linux remote code execution, but there’s a catch

Category: IT|Sep 27, 2024 | Author: Admin

Infostealer malware bypasses Chrome’s new cookie-theft defenses

Category: Google|Sep 26, 2024 | Author: Admin

The "Llama" is freed: Winamp goes open source after 27 years

Category: IT|Sep 25, 2024 | Author: Admin
more