Skip to main content
  1. Home
  2. Computing
  3. News

PrintNightmare isn’t over, as Windows is hit with another printing vulnerability

By
Add as a preferred source on Google

The vulnerabilities in the Windows Print Spooler service just won’t end for Microsoft. Despite a recent patch, a cybersecurity researcher has managed to exploit a new bug in the spooler — showing how someone with bad intent can gain administrative privileges in Windows by using a custom print server.

The new vulnerability works only in a specific situation but is still concerning since it’s not patched. Security researcher Benjamin Delpy showcased the inner workings of the vulnerability on his Twitter. This involves using a specific custom print server to install a specially created print driver that can run at the system-privilege level. This can allow non-admin users to open a command prompt with elevated privileges. You can see this in action in this video, as tested by Bleeping Computer, which first reported on the vulnerability.

Demonstration of remote PrintNightmare driver open a SYSTEM command prompt

Since the vulnerability is not patched, the easiest way to prevent it would be to disable Windows Print Spooler entirely. However, an advisory posted online showcases other methods. These are more complex and involve blocking remote traffic and restricting Point and Print functionality via the Group Policy editor. This makes it so non-admin users can only install print drivers from an approved list, but permitted print servers still can be injected with bad drivers.

Recommended Videos

It doesn’t seem like there’s going to be an end to PrintNightmare vulnerabilities anytime soon. Microsoft already fixed the initial PrintNightmare issue with a rare out-of-band patch, but since then security researchers have been digging into Microsoft’s fix and raising new concerns. On July 16, researchers demonstrated that someone with local (physical) access to a PC can use the Print Spooler to install programs and view, change, or delete data under a specific scenario.

This would be the third big issue reported by researchers, and there could be more on the way soon. The DefCon and Black Hat conferences are coming up. Usually, that’s where issues like this one are discussed. DefCon is the largest underground conference where hackers, corporate IT professionals, and government agencies aim to expand their knowledge and skill set in the world of hacking.

Arif Bacchus
Arif Bacchus
Former Computing Writer
Arif Bacchus is a native New Yorker and a fan of all things technology. Arif works as a freelance writer at Digital Trends…
Topics
AI may have just won a literary prize. My heart weeps seeing it poison our love for books.
updated book and AI photo

I had a hard time processing this news. As someone who has been deeply in love with stories since childhood and who grew up on the works of Arthur Conan Doyle, Terry Pratchett, J.R.R. Tolkien, and other such venerable authors, seeing an AI-written story win a prestigious writing award is hard to digest. 

If you are unaware, the winners for the Commonwealth Short Story Prize for 2026 were announced, and three of the five winning regional stories have been found to be entirely or partially written by AI. Or at least that seems to be the consensus among readers. As a reader and an amateur fiction writer, this hurt me deeper than any other tale of AI corroding our lives.

Read more
Canva and Adobe are coming to Gemini, and they want to make everything chatty
Adobe and Canva are plugging into Google’s assistant, betting that creative work starts with a prompt, not an app icon
Art, Collage, Photography

Canva and Adobe are moving deeper into Google Gemini, giving the assistant a bigger role before users ever open a design app.

Adobe says its "Adobe for creativity" connector is coming to Gemini in the coming weeks, giving users a way to describe tasks and send them through Adobe tools for imaging, design, and video. Canva is already rolling out its Connected App for Gemini in select English-language markets, with full availability coming soon.

Read more
AI can pass the Turing Test in live chats and appear more human than us. I am spooked now
UC San Diego researchers found GPT-4.5 was judged human 73% of the time in live conversations
Image of a human woman next to an AI-generated face with Real or Fake text at the bottom.

AI can pass the Turing Test in live chats, and the latest result lands with a chill. In a UC San Diego study, GPT-4.5 outperformed real participants at convincing judges there was a person on the other side.

The setup was harder to shrug off than a standard benchmark. Judges reacted to real-time exchanges rather than static prompts, then made a fast call based on conversation alone.

Read more