Cortana risks

%3CLINGO-SUB%20id%3D%22lingo-sub-364082%22%20slang%3D%22en-US%22%3ECortana%20risks%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-364082%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSPAN%3EMy%20new%20company's%20InfoSec%20staff%20has%20security%20concerns%20about%20Cortana%20and%20has%20it%20disabled.%20Can%20anyone%20provide%20me%20some%20second%20opinions%20about%20the%20basis%20and%20validity%20of%20these%20concerns%3F%3C%2FSPAN%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-LABS%20id%3D%22lingo-labs-364082%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3ESecurity%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E%3CLINGO-SUB%20id%3D%22lingo-sub-368288%22%20slang%3D%22en-US%22%3ERe%3A%20Cortana%20risks%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-368288%22%20slang%3D%22en-US%22%3E%3CP%3EHi%20Dean%2C%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EDisabling%20Cortana%20(on%20the%20lock%20screen%20only)%20was%20only%20recommended%20as%20a%20workaround%20for%20people%20who%20couldn't%20or%20hadn't%20yet%20applied%20the%20patch.%20Applying%20the%20patch%20resolves%20the%20issue%3A%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CFONT%20style%3D%22background-color%3A%20%23ffffff%3B%22%3E%3CA%20href%3D%22https%3A%2F%2Fportal.msrc.microsoft.com%2Fen-US%2Fsecurity-guidance%2Fadvisory%2FCVE-2018-8140%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noreferrer%22%3Ehttps%3A%2F%2Fportal.msrc.microsoft.com%2Fen-US%2Fsecurity-guidance%2Fadvisory%2FCVE-2018-8140%3C%2FA%3E%3C%2FFONT%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EThe%20original%20McAfee%20article%2C%20by%20the%20researchers%20who%20discovered%20the%20vulnerability%2C%20also%20recommends%20the%20patch%20and%20only%20suggests%20disabling%20on%20the%20lock%20screen%20in%20the%20absence%20of%20the%20patch%3A%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CFONT%20style%3D%22background-color%3A%20%23ffffff%3B%22%3E%3CA%20href%3D%22https%3A%2F%2Fsecuringtomorrow.mcafee.com%2Fother-blogs%2Fmcafee-labs%2Fwant-to-break-into-a-locked-windows-10-device-ask-cortana-cve-2018-8140%2F%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noreferrer%22%3Ehttps%3A%2F%2Fsecuringtomorrow.mcafee.com%2Fother-blogs%2Fmcafee-labs%2Fwant-to-break-into-a-locked-windows-10-device-ask-cortana-cve-2018-8140%2F%3C%2FA%3E%3C%2FFONT%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CFONT%20style%3D%22background-color%3A%20%23ffffff%3B%22%3EI%20hope%20that%20helps.%26nbsp%3B%3C%2FFONT%3E%3C%2FP%3E%3C%2FLINGO-BODY%3E
Respected Contributor

My new company's InfoSec staff has security concerns about Cortana and has it disabled. Can anyone provide me some second opinions about the basis and validity of these concerns?

1 Reply

Hi Dean, 

 

Disabling Cortana (on the lock screen only) was only recommended as a workaround for people who couldn't or hadn't yet applied the patch. Applying the patch resolves the issue:

 

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8140

 

The original McAfee article, by the researchers who discovered the vulnerability, also recommends the patch and only suggests disabling on the lock screen in the absence of the patch:

 

https://securingtomorrow.mcafee.com/other-blogs/mcafee-labs/want-to-break-into-a-locked-windows-10-d...

 

I hope that helps.