A Windows 10 hack that allows you to install malicious software onto your machine, even after a reboot, is now in the wild.
The attack was discovered by security researchers at Trend Micro and Symantec, according to a report published by Forbes.
The malware can then take over the system and install malware, spyware and spyware-infected files.
It’s an all-in-one way of doing a “zero-day” attack.
In other words, it’s a Trojan horse that’s ready to be used in the future.
The malware can also inject malicious code into Windows, including its built-in system functions, or inject itself into your Windows processes to gain access to the machine.
Trend Micro researchers said the malware has been installed on the machines of at least 10 million users and can be remotely exploited in many cases.
Symantec researchers said at least one of the Trojan horses they discovered is based on an exploit from the same source code that was used to build the “cookie clickers” found by Trend Micro researchers in Windows 10.
Symantsec researchers wrote that the Trojan was developed by the same developers that developed the “crack” exploit that was discovered in Windows XP, as well as the Trojan that has been used to compromise iPhones in China.
Trends Micro researchers also said they had found malware in Windows 7 and 8.1, and said they have seen malicious software in the software used by Microsoft and Google to deliver advertising.
The attackers also wrote that one of their findings was that Windows 10 does not use HTTPS, which is a protocol that encrypts communications between computers to ensure privacy.
“The exploit works by injecting itself into the Windows process, and then the system is able to run commands from a command-line shell (cmd.exe) on the remote system,” they wrote.
“The attackers used the exploit to run a ‘shell command’ that would run a command that would ‘download’ a malicious file from the internet.”
Trend Micro’s researchers also reported finding that “this exploit can be used to launch an adware infection.”
Symantech researchers wrote they found at least two other malicious files and programs that were installed on at least 13 million Windows PCs.
Symantech and Symantsec have both said they’re investigating the possibility that the two companies may have been targeted by the attack.