This Windows Vulnerability Enables Hackers to Infiltrate Your PC in Under 300 Milliseconds

Windows is not the most secure operating system, and new vulnerabilities are frequently identified. This recent threat can infiltrate your PC in 300 milliseconds, necessitating immediate updates.

Hackers Can Compromise Your Computer Instantly

The vulnerability enables an attacker to exploit the Mobile devices feature of Windows 11 through a sophisticated DLL hijacking technique. The vulnerability is designated as CVE-2025-24076 and has been recorded in Microsoft's security vulnerabilities database.

The vulnerability specifically targets a DLL file utilized by the camera feature in Windows 11, substituting it with a nefarious DLL to grant an attacker elevated rights on the machine. Windows employs this capability to enable the use of your phone as a webcam; nevertheless, it simultaneously serves as a potential entry point for attackers into your system.

In the instance presented by John Ostrowski on his Compass Security blog, the attack successfully penetrated an upgraded Windows 11 installation and generated a file in the C: disk accessible just to users with administrator capabilities. The technique can be employed to infiltrate malware onto a specific PC and run it with administrative privileges.

The assailant possesses around a 300-millisecond opportunity to substitute the DLL utilized by mobile devices with the nefarious variant. Ostrowski, in conjunction with James Forshaw, devised a method to terminate the program upon the access of the DLL. Subsequently, employing Microsoft's Detours library, they intercepted the mobile devices' requests for the designated DLL and substituted it with a malicious variant that facilitates privilege escalation.

A further vulnerability identified as CVE-2025-24994 was uncovered during the process, which possibly facilitates a user-to-user attack. CVE-2025-24076 represents the more urgent concern.

Upgrade Your System Immediately to Safeguard Yourself

The vulnerabilities were identified on September 20, 2024, and communicated to Microsoft on October 8. Microsoft required several months to rectify the flaws, ultimately releasing an update on March 11, 2025, to address the vulnerabilities. The vulnerability has not yet been exploited in the wild, and the business believes that exploitation is improbable.

Exploiting the vulnerability necessitates user interaction, although with limited privileges. An assailant must initially get access to the targeted system to initiate an event that can exploit the vulnerability, hence complicating the success of the attack.

If you are a Windows user and have implemented Microsoft's March security upgrades, you are safeguarded against the vulnerability. We strongly recommend that you update to the latest available version of Windows if you have not done so before. Exercise caution, as scammers are employing counterfeit Windows updates to expropriate your files; therefore, ensure that you exclusively utilize the Windows Update part inside the operating system settings for any updates.