Anyone can unlock the PC using the Windows AI Assistant "Cortana"

byChristopher Schirner

"AI Assistant installed in Windows 10CortanaIt was possible for anyone to unlock the PC by utilizing the IT system news siteHacker NewsIt is reported in.

Cortana Software Could Help Anyone Unlock Your Windows 10 Computer
https://thehackernews.com/2018/06/cortana-hack-windows-password.html

Want to Break Into a Locked Windows 10 Device? Ask Cortana (CVE-2018-8140)
https://securingtomorrow.mcafee.com/mcafee-labs/want-to-break-into-a-locked-windows-10-device-ask-cortana-cve-2018-8140/

Security company on June 12, 2018McAfeeThe vulnerability of Windows 10 (public opinion) announced by using AI assistant Cortana which can be operated by voice. When you start Cortana on the lock screen of the PC you can use the search window and you can operate it to some extent as it is.

Cortana does not recognize the dangers of the contents searched for in the input window and provides "the information that most closely matches the retrieved information" to the user. Therefore, a malicious person could exploit Cortana to steal information in the PC and rewrite the password.

The movie that Cedric Kosyan served as McAfee's Advanced Threat Research Institute demonstrated the newly discovered hacking method is the following.

Using Cortana Smart Assistant to Hack Windows Password


The PC used Windows 10 for OS to use for demonstration.


Move the PC to the lock screen from the start button on the bottom left.


From the screen to enter the password ......


First turn off the Wi-Fi connection.


Next, call "Hey, Cortana!" And start Cortana.


When Cortana is called, I ask questions such as "what time is it?" If you type on the keyboard while Cortana recognizes the words ......


A search window has opened. The point of this hacking method is that "the search screen opens when Cortana is running despite the lock screen".


Insert the USB flash memory while the search screen is open.


Then you will be notified that "PC recognized USB flash memory" at the bottom left.


From the search screenWindows PowerShellCall up and give a command to rewrite the password to saved in the file in the USB flash memory ......


A beep sounds and the password is rewritten.


After that enter the rewritten password ......


Hackers can easily enter the target PC.


Also, if you enter a word that seems to be the name of a document that simply wrote a password such as "pas", Cortana may find the text file in the PC without permission.


If you move the cursor, you can also see the contents a little bit without opening the file, you can also steal the password of the PC.


Microsoft evaluates the vulnerability as "Important" because it requires physical access to Cortana vulnerability. It is said that Cortana's vulnerability has been eliminated by the latest update done in June, 2018, but if you do not want to update Windows by all means, you should turn off Cortana on lock screen Hacker News is warning.