Microsoft fixes Cortana flaw that let hackers bypass Windows 10's lock screen TheINQUIRER

MICROSOFT HAS PATCHED a flaw in its Cortana virtual assistant that could enable hackers to bypass the lock screen on Windows 10 machines. The fix included in Microsoft's latest Patch Tuesday bug fix bundle, which comprises 12 updates intended to patch a total of 49 security vulnerabilities. This includes fixes for flaws in Windows, Office, SharePoint, and the Internet Explorer and Edge web browsers, along with a patch for the so-called'elevation of privilege vulnerability' in Microsoft's AI helper. Lane Thames, a senior security researcher at Tripwire, spoke out about the long-standing flaw with Cortana, that meant the AI helper was always listening for commands, even when a PC is locked. "The advisory states that'Cortana retrieves data from user input services without consideration for status'," said Thames.