If you use Windows, you need to be aware of a bulletin issued yesterday by Microsoft. The latest Windows security update fixes what Microsoft calls a “critical flaw” could let an attacker remotely install malware, which can be used to modify or delete data, or create new accounts with full user rights.
The “critical”-rated flaw affects Windows Vista and later — including Windows Server 2008 and later. Those who are logged in as an administrator, such as some home accounts and server users, are at the greatest risk.
Microsoft said that a patch has corrected the issue, and is available for download through the usual Windows Update channels. You can read the bulletin at https://technet.microsoft.com/library/security/MS16-087.