While many people welcomed the arrival of Windows Subsystem for Linux (WSL) in Windows 10, it has been found to be a potential security issue.
The steps for exploiting a system using a Bashware attack can be summarized as follows:
- Load the WSL components
- Enable developer mode
- Install the Linux file system
- Install Wine
The researchers say that the technique is very easy to exploit, and it can be used to bypass “most of the leading anti-virus and security products on the market.” It is said that the attack vector could place all 400 million computers running Windows 10 at risk.
