Windows 10 UWP Bug Lets Hackers Access All Your Files

Microsoft says apps published on the Microsoft Store, many of them UWP (Universal Windows Platform) apps, are the most secure choice as all of them are protected against malware and threats that typically target Win32 software.

One of the reasons UWP apps are recommended over their Win32 siblings is that they run in a sandbox, which means it’s theoretically impossible for malware to reach your data because this sandbox mode blocks access to the rest of the files.

Technically, Microsoft allows UWP apps running in a sandbox to access the rest of the files stored on the hard-drive with the broadFileSystemAccess API.

This is required because there are UWP apps that need to store files on the local drives, load documents, and other operations with data on the PC. The API implementation, however, includes a warning that is displayed when the apps require access to files, so users can block them if they think it could be malware.

Bug in UWP apps

But as... (read more)

No comments:

Post a Comment