Unexpectedly, Google has found a critical security flaw again, in one of their most popular operating systems, Windows 10. As you are aware, Windows 10 has a pre-installed password manager by default, named Keeper. Tavis Ormandy, a researcher from Google’s Project Zero has discovered a critical vulnerability in the Windows 10 password manager, which he claims reveals login keys from random people. As a result, Microsoft is again suffering embarrassment for not finding out about this severe problem earlier.
Project Zero is a Google firm which is dedicated to computer security for both its own products and those of other companies. This is not the first failure they have found in any of Microsofts products. The outstanding PC security master remarked that he had introduced a duplicate of Windows 10 which has been recently downloaded from Microsoft Developer Network, with no change or downloads by outsiders.
The copy of Microsoft’s operating system, Windows 10, could be used to find out the preinstalled password manager as it is served by third parties, which is critically vulnerable. Moreover, he says it allows any web page to steal users login passwords from other online services. As this is not the development of Microsoft, directly or Windows 10 code itself.
The Redmond company says Microsoft is providing its users third-party software for password management. This is where the critical security flaws arise which they explain it as a development of the investigation, allowing any of the web pages to steal the password from Windows 10 users. Typically, this problem is communicated to Microsoft and they have a 90-day deadline to fix it.