From TomsGuide.com….
A previously unknown Windows “zero-day” flaw is being exploited by hackers, but Microsoft won’t likely be fixing it until the middle of next month. The vulnerability affects Windows 7 through Windows 10.
So say the researchers at Google’s Project Zero, who also revealed that the Windows exploit is just the second step in a one-two punch being used by remote attackers to take over PCs. The first step is a Chrome flaw that was disclosed (and patched) last week.