Windows 10 UAC Loophole Can Be Used to Infect Systems with Malware
The User Account Control (also known as UAC) is a Windows feature that’s supposed to add a new protection layer to Microsoft’s operating system, requesting administrator privileges to launch processes that can modify system files or settings.
And although it was developed with this purpose in mind, UAC can easily become a double-edged sword, as bypasses can make it completely useless and enable cybercriminals to deploy malware on a system left with no protection.
Security researcher Matt Nelson recently discovered a new way to bypass UAC, and it all comes down to the Backup and Restore tool that’s available in Windows since the debut of Vista. Specifically, Nelson explains that UAC can be easily bypassed by simply modifying registry paths for the Backup and Restore utility, which can be identified on a system by its corresponding process sdclt.exe.