It is connected with a vulnerability discovered at the end of June called “PrintNightmare”(Printing Nightmare), which allows you to run remote code.
And bug was published for a short time in an open repository on GitHub. This time was enough for the code to spread over the Internet.
The vulnerability lay in the print service, which is started by default in all versions of the OS. In this connection, it is not difficult to exploit the vulnerability.
Therefore, the company gave it the highest degree of danger and released an urgent fix for most versions of the operating system. Even the no longer supported “Windows 7”.
Therefore We recommend that you install the latest operating system update. And if for some reason you cannot do this, then disable the print service with commands in the terminal:
Stop-Service -Name Spooler -Force
Set-Service -Name Spooler -StartupType Disabled